General
-
Target
5d06e71b812995a3d7c53426ef99a75756f6d6eff25d615c7dcc21f0614c2f94
-
Size
1.9MB
-
Sample
210515-z1vjs78mvn
-
MD5
b70bf8f078cc185066cf20bf3c30ada7
-
SHA1
b98c12cb0b0dfec4d4925dffb590486026a3820d
-
SHA256
5d06e71b812995a3d7c53426ef99a75756f6d6eff25d615c7dcc21f0614c2f94
-
SHA512
e1cfebc431aed855025b5f692607ed96e9857be98c74ecbf146dc427550a958d3e3162d0ddedfd2b5c26b3b9207bbf7b9a1e0f9a0639b7e5638c071e5cd5e8a9
Static task
static1
Behavioral task
behavioral1
Sample
5d06e71b812995a3d7c53426ef99a75756f6d6eff25d615c7dcc21f0614c2f94.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
5d06e71b812995a3d7c53426ef99a75756f6d6eff25d615c7dcc21f0614c2f94.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
5d06e71b812995a3d7c53426ef99a75756f6d6eff25d615c7dcc21f0614c2f94
-
Size
1.9MB
-
MD5
b70bf8f078cc185066cf20bf3c30ada7
-
SHA1
b98c12cb0b0dfec4d4925dffb590486026a3820d
-
SHA256
5d06e71b812995a3d7c53426ef99a75756f6d6eff25d615c7dcc21f0614c2f94
-
SHA512
e1cfebc431aed855025b5f692607ed96e9857be98c74ecbf146dc427550a958d3e3162d0ddedfd2b5c26b3b9207bbf7b9a1e0f9a0639b7e5638c071e5cd5e8a9
Score10/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-