General
-
Target
601e02d9dfe69e65c83970432e3ebf1f
-
Size
9.2MB
-
Sample
201117-21rcn1rkaa
-
MD5
299b465a5d3c15df47da5d91c35500d0
-
SHA1
997c387e0a84cbb28526c5233dc41d7572d69d08
-
SHA256
39a57b6c95024ee99ef3b734b6928ca979b0c402433f595983f60db97df60cf7
-
SHA512
68c29ec2f48fd01d8dad8d1bfa6dfd8f5bfab609a4226f2cfcc5ce76f67f30438806cd01bf100d296bd64a55f7f7ede892491d691cc223b33f16d3e42c480324
Static task
static1
Behavioral task
behavioral1
Sample
601e02d9dfe69e65c83970432e3ebf1f.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
601e02d9dfe69e65c83970432e3ebf1f.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
601e02d9dfe69e65c83970432e3ebf1f
-
Size
9.2MB
-
MD5
299b465a5d3c15df47da5d91c35500d0
-
SHA1
997c387e0a84cbb28526c5233dc41d7572d69d08
-
SHA256
39a57b6c95024ee99ef3b734b6928ca979b0c402433f595983f60db97df60cf7
-
SHA512
68c29ec2f48fd01d8dad8d1bfa6dfd8f5bfab609a4226f2cfcc5ce76f67f30438806cd01bf100d296bd64a55f7f7ede892491d691cc223b33f16d3e42c480324
Score9/10-
ServiceHost packer
Detects ServiceHost packer used for .NET malware
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-