General
-
Target
84352A722935CB115706CCE06D952ADF.exe
-
Size
528KB
-
Sample
210620-m1z5vvlxwn
-
MD5
84352a722935cb115706cce06d952adf
-
SHA1
68a49229dad70a1bc06db45747e4760c67440feb
-
SHA256
b066989014bb1fa69020b9615b5d8074818ac1315eb541ff9e6a2711f0d5d7cb
-
SHA512
dcd51bf74d171eeae32d63c155f393c2664ebde0819203d23612dffe6579d5f6bebcff390d8f323b04f4a7abe7fe6cc986ef49c3561eb16c584e3e22a51c4abc
Static task
static1
Behavioral task
behavioral1
Sample
84352A722935CB115706CCE06D952ADF.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
84352A722935CB115706CCE06D952ADF.exe
-
Size
528KB
-
MD5
84352a722935cb115706cce06d952adf
-
SHA1
68a49229dad70a1bc06db45747e4760c67440feb
-
SHA256
b066989014bb1fa69020b9615b5d8074818ac1315eb541ff9e6a2711f0d5d7cb
-
SHA512
dcd51bf74d171eeae32d63c155f393c2664ebde0819203d23612dffe6579d5f6bebcff390d8f323b04f4a7abe7fe6cc986ef49c3561eb16c584e3e22a51c4abc
-
Downloads MZ/PE file
-
Deletes itself
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-