General
-
Target
21c7e8b0fa1b8c5a8b3a9ece0b2b6ec4fe940d98289bdad2f36e31ca8916b1f8
-
Size
1.1MB
-
Sample
191025-kjspm571zn
-
MD5
b6f753c4808bb6fb32e0e030cd70e596
-
SHA1
a4cf6c99f71c4c1164bdb4ee6b0e6b4843f97180
-
SHA256
21c7e8b0fa1b8c5a8b3a9ece0b2b6ec4fe940d98289bdad2f36e31ca8916b1f8
-
SHA512
9f92fcca4762b96887aaac7ee42695a4caed07e0802a6565f719325dc52aac150b5b382780286c411fb5ed5d067b45949349a1839920ad004f979b883b5d9766
Task
task1
Sample
21c7e8b0fa1b8c5a8b3a9ece0b2b6ec4fe940d98289bdad2f36e31ca8916b1f8.exe
Resource
win7v191014
Task
task2
Sample
21c7e8b0fa1b8c5a8b3a9ece0b2b6ec4fe940d98289bdad2f36e31ca8916b1f8.exe
Resource
win10v191014
Malware Config
Targets
-
-
Target
21c7e8b0fa1b8c5a8b3a9ece0b2b6ec4fe940d98289bdad2f36e31ca8916b1f8
-
Size
1.1MB
-
MD5
b6f753c4808bb6fb32e0e030cd70e596
-
SHA1
a4cf6c99f71c4c1164bdb4ee6b0e6b4843f97180
-
SHA256
21c7e8b0fa1b8c5a8b3a9ece0b2b6ec4fe940d98289bdad2f36e31ca8916b1f8
-
SHA512
9f92fcca4762b96887aaac7ee42695a4caed07e0802a6565f719325dc52aac150b5b382780286c411fb5ed5d067b45949349a1839920ad004f979b883b5d9766
Score7/10-
Checks system information in the registry (likely anti-VM)
-
Modifies service
-
Suspicious use of SetThreadContext
-