General
-
Target
system64.exe
-
Size
14.1MB
-
Sample
210622-6lvd7takxa
-
MD5
5ec804252ed680fc489bb72eab4b3286
-
SHA1
0a8cccbe16052363d778e58073ab68ddc74ba5e3
-
SHA256
6cea694100629e6e3c2c0faee29be089c5fe60937120d6eedb7e57a844e7e27e
-
SHA512
848e0965b39e282690804f225c5a2d528b8b30e5df86296688c00314d28eec99da1e6e90d541edf5c28b73d1569c1c05bfc9d4f05e7afba00f014e6c98e9ec9c
Static task
static1
Behavioral task
behavioral1
Sample
system64.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
system64.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
system64.exe
-
Size
14.1MB
-
MD5
5ec804252ed680fc489bb72eab4b3286
-
SHA1
0a8cccbe16052363d778e58073ab68ddc74ba5e3
-
SHA256
6cea694100629e6e3c2c0faee29be089c5fe60937120d6eedb7e57a844e7e27e
-
SHA512
848e0965b39e282690804f225c5a2d528b8b30e5df86296688c00314d28eec99da1e6e90d541edf5c28b73d1569c1c05bfc9d4f05e7afba00f014e6c98e9ec9c
Score7/10-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-