General
-
Target
dafe1fadb20503d0c486e6f3c6888c14e8ec1565d9fb61aa837822793ce1e9f1
-
Size
220KB
-
Sample
191025-jnzbshw3d2
-
MD5
e327c2543c22c48eabc61713fde9f869
-
SHA1
f3b88ef474e60dcedcc212aa4569a455e06f9db0
-
SHA256
dafe1fadb20503d0c486e6f3c6888c14e8ec1565d9fb61aa837822793ce1e9f1
-
SHA512
a29424860127b6638e5e2c8b4254dbab9f7530f8dd6570194083d38b53dbf4e6c1a158dc7203370b14db5330f098e591aed11655ea0e4ee5279916a0ab3f6f2a
Task
task1
Sample
dafe1fadb20503d0c486e6f3c6888c14e8ec1565d9fb61aa837822793ce1e9f1.exe
Resource
win7v191014
Task
task2
Sample
dafe1fadb20503d0c486e6f3c6888c14e8ec1565d9fb61aa837822793ce1e9f1.exe
Resource
win10v191014
Malware Config
Targets
-
-
Target
dafe1fadb20503d0c486e6f3c6888c14e8ec1565d9fb61aa837822793ce1e9f1
-
Size
220KB
-
MD5
e327c2543c22c48eabc61713fde9f869
-
SHA1
f3b88ef474e60dcedcc212aa4569a455e06f9db0
-
SHA256
dafe1fadb20503d0c486e6f3c6888c14e8ec1565d9fb61aa837822793ce1e9f1
-
SHA512
a29424860127b6638e5e2c8b4254dbab9f7530f8dd6570194083d38b53dbf4e6c1a158dc7203370b14db5330f098e591aed11655ea0e4ee5279916a0ab3f6f2a
Score7/10-
Checks system information in the registry (likely anti-VM)
-
Modifies service
-
Suspicious use of SetThreadContext
-