General
-
Target
61c6b349fe8f639b7d9d56a81b005a2f86b05c5cad20225ff6ba3aa24e592c24
-
Size
84KB
-
Sample
210513-ekmnvyfftx
-
MD5
d8ce8e59dc1b438493939ab9753807d0
-
SHA1
fa3ec7549a6f496749762cbed1038a2cb1951dca
-
SHA256
61c6b349fe8f639b7d9d56a81b005a2f86b05c5cad20225ff6ba3aa24e592c24
-
SHA512
7ff83c93e3b9f17a2fae2a14a5a0ddfc498cc3d7cec5dffda45936383b3c2c2ee2aa62719b2165d74b1bf676a71b55191e45702b576cc059fa6af24ba74ae954
Static task
static1
Behavioral task
behavioral1
Sample
61c6b349fe8f639b7d9d56a81b005a2f86b05c5cad20225ff6ba3aa24e592c24.exe
Resource
win7v20210408
Malware Config
Targets
-
-
Target
61c6b349fe8f639b7d9d56a81b005a2f86b05c5cad20225ff6ba3aa24e592c24
-
Size
84KB
-
MD5
d8ce8e59dc1b438493939ab9753807d0
-
SHA1
fa3ec7549a6f496749762cbed1038a2cb1951dca
-
SHA256
61c6b349fe8f639b7d9d56a81b005a2f86b05c5cad20225ff6ba3aa24e592c24
-
SHA512
7ff83c93e3b9f17a2fae2a14a5a0ddfc498cc3d7cec5dffda45936383b3c2c2ee2aa62719b2165d74b1bf676a71b55191e45702b576cc059fa6af24ba74ae954
-
Modifies firewall policy service
-
Suspicious use of NtCreateProcessExOtherParentProcess
-