General
-
Target
str.dll
-
Size
536KB
-
Sample
201109-hex53fbkfn
-
MD5
b9e9106de62786896f3ee20c9ae088ec
-
SHA1
01f1d53bbbdb07e5278d0bbe44147c9c7ab08545
-
SHA256
e9de1bba6fbd595261940001e4b38482fcdec4253fd4c0a12ea04d8864e33f7c
-
SHA512
041cebe57576628fde5c143c2d1f1c2013073640d63b0346c005240f9760878db22d8104ed81f584f1622679d9ece975d3a5097515c97fcdf7cb7d82c46e985f
Static task
static1
Behavioral task
behavioral1
Sample
str.dll
Resource
win7v20201028
Behavioral task
behavioral2
Sample
str.dll
Resource
win10v20201028
Malware Config
Extracted
zloader
bot5
bot5
https://militanttra.at/owg.php
Targets
-
-
Target
str.dll
-
Size
536KB
-
MD5
b9e9106de62786896f3ee20c9ae088ec
-
SHA1
01f1d53bbbdb07e5278d0bbe44147c9c7ab08545
-
SHA256
e9de1bba6fbd595261940001e4b38482fcdec4253fd4c0a12ea04d8864e33f7c
-
SHA512
041cebe57576628fde5c143c2d1f1c2013073640d63b0346c005240f9760878db22d8104ed81f584f1622679d9ece975d3a5097515c97fcdf7cb7d82c46e985f
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-