General
-
Target
8c9b46d8c682557e142bf5e96b70709a.exe
-
Size
1.1MB
-
Sample
210620-xj6msfd952
-
MD5
8c9b46d8c682557e142bf5e96b70709a
-
SHA1
84f206e3f782a58c122be02dc107210ac894e6ea
-
SHA256
5146dcf82d334df70b5d75763f4625af0694934aa667e9faaadfad02c56c85a9
-
SHA512
017c633aa367be830103b0decfaed0dba646052211ed9385cf0d4cda9b905823df4d667e18910241b07de0753c4a388e6af77632719204ca4bae6f56ec108132
Static task
static1
Behavioral task
behavioral1
Sample
8c9b46d8c682557e142bf5e96b70709a.exe
Resource
win7v20210408
Malware Config
Targets
-
-
Target
8c9b46d8c682557e142bf5e96b70709a.exe
-
Size
1.1MB
-
MD5
8c9b46d8c682557e142bf5e96b70709a
-
SHA1
84f206e3f782a58c122be02dc107210ac894e6ea
-
SHA256
5146dcf82d334df70b5d75763f4625af0694934aa667e9faaadfad02c56c85a9
-
SHA512
017c633aa367be830103b0decfaed0dba646052211ed9385cf0d4cda9b905823df4d667e18910241b07de0753c4a388e6af77632719204ca4bae6f56ec108132
-
Downloads MZ/PE file
-
Deletes itself
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-