General
-
Target
ExcelViewerss.exe
-
Size
571KB
-
Sample
210527-hbsx4839aa
-
MD5
40d56ef0857cd5fe0ba21d20c73686e2
-
SHA1
90a8bdadbdebfcaf3a1e146472d56db7d531f921
-
SHA256
d1623332c586135747a2575bec4ee783f299c5fca0f527f0328ea47691e9506d
-
SHA512
74953fa8056f17e96831cf932a482907af00ef22008a4c829da339d3c55fb9696ba812c605155486971cdc4427cb85bf4d63f0e29ffdb46c602be083bdcdc038
Malware Config
Targets
-
-
Target
ExcelViewerss.exe
-
Size
571KB
-
MD5
40d56ef0857cd5fe0ba21d20c73686e2
-
SHA1
90a8bdadbdebfcaf3a1e146472d56db7d531f921
-
SHA256
d1623332c586135747a2575bec4ee783f299c5fca0f527f0328ea47691e9506d
-
SHA512
74953fa8056f17e96831cf932a482907af00ef22008a4c829da339d3c55fb9696ba812c605155486971cdc4427cb85bf4d63f0e29ffdb46c602be083bdcdc038
Score10/10-
RevcodeRat, WebMonitorRat
WebMonitor is a remote access tool that you can use from any browser access to control, and monitor your phones, or PCs.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-