General
-
Target
8B1007A3D642DC4CAB47D198BB1B586D.exe
-
Size
1.6MB
-
Sample
210621-lbdchm1kba
-
MD5
8b1007a3d642dc4cab47d198bb1b586d
-
SHA1
2efc9e67fade2a54b97712fb6b55e2f9cf9348dc
-
SHA256
e4fae47c8647fc72fb1bbcadc0df6814c22298b3040938f81cbe0b83fec8b8b3
-
SHA512
a7fc3db903aaf483436e91402232b7bc810e41df8485e8719a5ed7a1729e81d9cf8001c9d1e5e75b4e60ffc7dc1e54c03f7bb2a532ebd684a898044e83160abf
Static task
static1
Behavioral task
behavioral1
Sample
8B1007A3D642DC4CAB47D198BB1B586D.exe
Resource
win7v20210410
Malware Config
Targets
-
-
Target
8B1007A3D642DC4CAB47D198BB1B586D.exe
-
Size
1.6MB
-
MD5
8b1007a3d642dc4cab47d198bb1b586d
-
SHA1
2efc9e67fade2a54b97712fb6b55e2f9cf9348dc
-
SHA256
e4fae47c8647fc72fb1bbcadc0df6814c22298b3040938f81cbe0b83fec8b8b3
-
SHA512
a7fc3db903aaf483436e91402232b7bc810e41df8485e8719a5ed7a1729e81d9cf8001c9d1e5e75b4e60ffc7dc1e54c03f7bb2a532ebd684a898044e83160abf
-
BitRAT Payload
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-