General
-
Target
a4536a56947e279f4408a6929ada63a4
-
Size
12.1MB
-
Sample
201214-6c5z489msn
-
MD5
a4536a56947e279f4408a6929ada63a4
-
SHA1
e372a8d21f1d078eda4b6a630aac04076ae545c9
-
SHA256
727386e7c254ca1d51a7bb5d02da3ea09219c4c27df4d6fb33746859d28586dd
-
SHA512
b7b493ca340d0e6d4f5a8ec86345f98c4786feae91e5f9bec9295224b3bb87dd3b7cbcf8de93597f04b01aaa9c9fcf06b64d3096804246ddc437dfd40aa6bfaf
Static task
static1
Behavioral task
behavioral1
Sample
a4536a56947e279f4408a6929ada63a4.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
a4536a56947e279f4408a6929ada63a4.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
a4536a56947e279f4408a6929ada63a4
-
Size
12.1MB
-
MD5
a4536a56947e279f4408a6929ada63a4
-
SHA1
e372a8d21f1d078eda4b6a630aac04076ae545c9
-
SHA256
727386e7c254ca1d51a7bb5d02da3ea09219c4c27df4d6fb33746859d28586dd
-
SHA512
b7b493ca340d0e6d4f5a8ec86345f98c4786feae91e5f9bec9295224b3bb87dd3b7cbcf8de93597f04b01aaa9c9fcf06b64d3096804246ddc437dfd40aa6bfaf
Score10/10-
Creates new service(s)
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Sets service image path in registry
-
Deletes itself
-
Suspicious use of SetThreadContext
-