General
-
Target
CompanyLicense.exe
-
Size
96KB
-
Sample
210119-stwgwhdhj2
-
MD5
ace3e9fc3a2277aa4e72881c9f204642
-
SHA1
50337a4aa52b65cac5fd2745c3fe7d88d503d00f
-
SHA256
c6cf35735aff0eba459a6a1f4b65722ba08dfb0beed54b0df8e9be3ec3edba98
-
SHA512
9220fe497f297ae1d86a13dd28fffc381a6945ac49cc2f3b904d605a193af00daaf18b6bc4f6e85d93f6a80b29d34dd56d7269bbc11b46d98319e571989e721f
Static task
static1
Behavioral task
behavioral1
Sample
CompanyLicense.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
CompanyLicense.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
CompanyLicense.exe
-
Size
96KB
-
MD5
ace3e9fc3a2277aa4e72881c9f204642
-
SHA1
50337a4aa52b65cac5fd2745c3fe7d88d503d00f
-
SHA256
c6cf35735aff0eba459a6a1f4b65722ba08dfb0beed54b0df8e9be3ec3edba98
-
SHA512
9220fe497f297ae1d86a13dd28fffc381a6945ac49cc2f3b904d605a193af00daaf18b6bc4f6e85d93f6a80b29d34dd56d7269bbc11b46d98319e571989e721f
Score10/10-
Adds Run key to start application
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-