General
-
Target
a9fa51ad1139e264aab2587952efa791
-
Size
10.5MB
-
Sample
201214-64aca7xdna
-
MD5
a9fa51ad1139e264aab2587952efa791
-
SHA1
d2f386beedc6ca2d0107360194757e287d59ade0
-
SHA256
34a778f45563129b9fd9ba7baaa297056f2cfa2f39804af405e2f25c989721c8
-
SHA512
394e02fcaeb785327a0fca1f5ca2bd852974010a38be79fc1b128405327ec6660ee17d07dd1b6dd9f0056b4746bd0ff3160e5418eea04b42bfff93de18ee501f
Static task
static1
Behavioral task
behavioral1
Sample
a9fa51ad1139e264aab2587952efa791.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
a9fa51ad1139e264aab2587952efa791.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
a9fa51ad1139e264aab2587952efa791
-
Size
10.5MB
-
MD5
a9fa51ad1139e264aab2587952efa791
-
SHA1
d2f386beedc6ca2d0107360194757e287d59ade0
-
SHA256
34a778f45563129b9fd9ba7baaa297056f2cfa2f39804af405e2f25c989721c8
-
SHA512
394e02fcaeb785327a0fca1f5ca2bd852974010a38be79fc1b128405327ec6660ee17d07dd1b6dd9f0056b4746bd0ff3160e5418eea04b42bfff93de18ee501f
Score10/10-
Creates new service(s)
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Sets service image path in registry
-
Deletes itself
-
Suspicious use of SetThreadContext
-