General
-
Target
SecuriteInfo.com.Generic.mg.900341b737237e8e.6099
-
Size
506KB
-
Sample
201109-bwx4ne32hj
-
MD5
900341b737237e8e241d50dbfbf11e0d
-
SHA1
989a6a64f162b09746a7bf36dfb238d5462aca64
-
SHA256
ab92b7c54f6fb064001b3dadf306f85efa7344fc9efa88070bbcd91164e80af2
-
SHA512
67acbf22672951cb8b975589a779879b8320b88eb9b7e7655fe076bdeb7f0dc1b7a515fe4e95510a17c4e5f7a117612ca38e7feaa6520b1237cd96a5012c9033
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Generic.mg.900341b737237e8e.6099.dll
Resource
win7v20201028
Malware Config
Extracted
zloader
bot5
bot5
https://militanttra.at/owg.php
Targets
-
-
Target
SecuriteInfo.com.Generic.mg.900341b737237e8e.6099
-
Size
506KB
-
MD5
900341b737237e8e241d50dbfbf11e0d
-
SHA1
989a6a64f162b09746a7bf36dfb238d5462aca64
-
SHA256
ab92b7c54f6fb064001b3dadf306f85efa7344fc9efa88070bbcd91164e80af2
-
SHA512
67acbf22672951cb8b975589a779879b8320b88eb9b7e7655fe076bdeb7f0dc1b7a515fe4e95510a17c4e5f7a117612ca38e7feaa6520b1237cd96a5012c9033
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-