General
-
Target
Proof of Payment.exe
-
Size
919KB
-
Sample
210115-bdabg1l7vx
-
MD5
06eea001fb61532885ae0ce6f95d0b3c
-
SHA1
0cd7c9f2abdd2558333541762903d2f8328dec96
-
SHA256
2dc1258101b1183ad4e08320f15310cad541c900919e98e0816c751fee303306
-
SHA512
1bd704ab322497ffc5212aed7283819253113b4f2e306b0f3a8d1eec2d4cb302d3007c859877284d31c988917c712f652bdede16c7fb489568293c28e3860c21
Static task
static1
Behavioral task
behavioral1
Sample
Proof of Payment.exe
Resource
win7v20201028
Malware Config
Targets
-
-
Target
Proof of Payment.exe
-
Size
919KB
-
MD5
06eea001fb61532885ae0ce6f95d0b3c
-
SHA1
0cd7c9f2abdd2558333541762903d2f8328dec96
-
SHA256
2dc1258101b1183ad4e08320f15310cad541c900919e98e0816c751fee303306
-
SHA512
1bd704ab322497ffc5212aed7283819253113b4f2e306b0f3a8d1eec2d4cb302d3007c859877284d31c988917c712f652bdede16c7fb489568293c28e3860c21
-
NetWire RAT payload
-
Suspicious use of SetThreadContext
-