General
-
Target
aec0249eb717fb18a6e5f6bbd811bb7c
-
Size
11.3MB
-
Sample
201214-dlsa631gh2
-
MD5
aec0249eb717fb18a6e5f6bbd811bb7c
-
SHA1
b64f46fd11dd2a1b5d92a8f1f68103b8dfd4a550
-
SHA256
241945fdc2d8e9d5dd8b40ae553d6c6a15a1b2ff3841f5fb174fc654832bad2e
-
SHA512
28b23446cec58506ca056984897defe3a0dc6c2d2f159e51b56cbd61814c0ff36f61643dccf4bc0d8ccb44671d2cdc5a30d461aaeeb76021686f575668c0d132
Static task
static1
Behavioral task
behavioral1
Sample
aec0249eb717fb18a6e5f6bbd811bb7c.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
aec0249eb717fb18a6e5f6bbd811bb7c.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
aec0249eb717fb18a6e5f6bbd811bb7c
-
Size
11.3MB
-
MD5
aec0249eb717fb18a6e5f6bbd811bb7c
-
SHA1
b64f46fd11dd2a1b5d92a8f1f68103b8dfd4a550
-
SHA256
241945fdc2d8e9d5dd8b40ae553d6c6a15a1b2ff3841f5fb174fc654832bad2e
-
SHA512
28b23446cec58506ca056984897defe3a0dc6c2d2f159e51b56cbd61814c0ff36f61643dccf4bc0d8ccb44671d2cdc5a30d461aaeeb76021686f575668c0d132
Score10/10-
Creates new service(s)
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Sets service image path in registry
-
Deletes itself
-
Suspicious use of SetThreadContext
-