General
-
Target
SecuriteInfo.com.Trojan.GenericKD.36850358.14162.31045
-
Size
848KB
-
Sample
210506-3x9nj2r8an
-
MD5
e2cce68a81438b2ceeea09aadeaddb41
-
SHA1
5e175d1dcf82318aa059d2c0095c6bdd0c810d49
-
SHA256
86926685c52fc0eb80f8d256eff2fd0e34b1d4580c5861ec230b90370d68b9fa
-
SHA512
6771fbbb1f996c49ff66db7ddc83c6caccaa1685a01c83665f2e11b6c1b0946c2c7d76b16150f7ac39400ed66434be0453debbb50bd9b3bc3b91d74ae64f688a
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Trojan.GenericKD.36850358.14162.31045.exe
Resource
win7v20210408
Malware Config
Extracted
xloader
2.3
http://www.montcoimmigrationlawyer.com/uoe8/
chalance.design
certifiedlaywernj.com
bsbgraphic.com
caeka.com
zagorafinancial.com
cvingenieriacivil.net
mojilifenoosa.com
bucktheherd.net
sparkmonic.com
catherineandwilson.com
cdefenders.com
intersp.net
santoriniimpressivetours.net
arkansaspaymentrelief.com
tewab.com
bjzjgjg.com
michgoliki.com
oallahplease.com
plaisterpress.com
redyroblx.com
funnyfootballmugs.com
borderlesstrade.info
partequity.net
3992199.com
bestcoloncleanseblog.com
online-legalservices.com
fibermover.com
magen-tracks.xyz
hotelsinshirdimkm.com
beachjunction.com
lanren.plus
nouvellecartebancaire.com
thegiftsofdepression.com
metabol.parts
dvxdkrbll.icu
flsprayer.com
przyczepy.net
cantinhosdeaparecida.com
californiasecuritycamera.com
nevadasmallbusinessattorney.com
skipperdaily.com
missjeschickt.com
rocketmortgageshady.net
upholsteredwineracks.com
best20singles.com
fsquanyi.com
ronlinebiz.com
gaelmobilecarwash.com
commercials.pro
bl927.com
workforceuae.com
innercritictypes.com
unipacksexpress.com
chaitanya99.com
rangamaty.com
7chd.com
keydefi.com
liveporn.wiki
carajedellcasting.com
gooddoggymedia.com
boldercoolware.com
hispekdiamond.com
expnashvilletn.com
swashbug.com
Targets
-
-
Target
SecuriteInfo.com.Trojan.GenericKD.36850358.14162.31045
-
Size
848KB
-
MD5
e2cce68a81438b2ceeea09aadeaddb41
-
SHA1
5e175d1dcf82318aa059d2c0095c6bdd0c810d49
-
SHA256
86926685c52fc0eb80f8d256eff2fd0e34b1d4580c5861ec230b90370d68b9fa
-
SHA512
6771fbbb1f996c49ff66db7ddc83c6caccaa1685a01c83665f2e11b6c1b0946c2c7d76b16150f7ac39400ed66434be0453debbb50bd9b3bc3b91d74ae64f688a
-
Xloader Payload
-
Suspicious use of SetThreadContext
-