General
-
Target
7a8916c13c6b816bc756134acdf71c4cb9f28e9dd0f6009783a84e2b26437af1
-
Size
1.5MB
-
Sample
210513-xc8jn3ssqj
-
MD5
b4f71adf9ec04a2b87e7588d8af2ba9e
-
SHA1
316b8b6e5a80eb8d2e061a80527ff7be6731c25e
-
SHA256
7a8916c13c6b816bc756134acdf71c4cb9f28e9dd0f6009783a84e2b26437af1
-
SHA512
36b1259f6769582ae28a14ebf64ac7c8133f5513f8595892a3eb3de8d71b12966967e67f82ea0a301bc91f9f912d79862905048853e22b26c070aaf9368908d2
Static task
static1
Behavioral task
behavioral1
Sample
7a8916c13c6b816bc756134acdf71c4cb9f28e9dd0f6009783a84e2b26437af1.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
7a8916c13c6b816bc756134acdf71c4cb9f28e9dd0f6009783a84e2b26437af1.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
7a8916c13c6b816bc756134acdf71c4cb9f28e9dd0f6009783a84e2b26437af1
-
Size
1.5MB
-
MD5
b4f71adf9ec04a2b87e7588d8af2ba9e
-
SHA1
316b8b6e5a80eb8d2e061a80527ff7be6731c25e
-
SHA256
7a8916c13c6b816bc756134acdf71c4cb9f28e9dd0f6009783a84e2b26437af1
-
SHA512
36b1259f6769582ae28a14ebf64ac7c8133f5513f8595892a3eb3de8d71b12966967e67f82ea0a301bc91f9f912d79862905048853e22b26c070aaf9368908d2
Score10/10-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-