General
-
Target
TikTok_Report_Bot.exe
-
Size
12.2MB
-
Sample
210626-v9ccg46r2a
-
MD5
8e6569ed8da956e76dc37c48a3810411
-
SHA1
e486c17192e13419c356c7a4af399118ad27c372
-
SHA256
f7ee0d4f9163573a3c0e97a9e720cfde2681c490dafa5dd932dc9c83306c86f8
-
SHA512
a81f9d2dc0b1091b7f0de9d920a382f8e23ac831ec753cc9c3ceb7375aa9de9e493924461c9843d0063b2d21b0610a9129b5a862434f43c9ba4a238b2b8940e3
Static task
static1
Behavioral task
behavioral1
Sample
TikTok_Report_Bot.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
TikTok_Report_Bot.exe
-
Size
12.2MB
-
MD5
8e6569ed8da956e76dc37c48a3810411
-
SHA1
e486c17192e13419c356c7a4af399118ad27c372
-
SHA256
f7ee0d4f9163573a3c0e97a9e720cfde2681c490dafa5dd932dc9c83306c86f8
-
SHA512
a81f9d2dc0b1091b7f0de9d920a382f8e23ac831ec753cc9c3ceb7375aa9de9e493924461c9843d0063b2d21b0610a9129b5a862434f43c9ba4a238b2b8940e3
Score7/10-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-