General
-
Target
Latex+A5+Booklet+Template-PLND-ABMwKmEcmwAABTwCAEdCFwASAN3i2g8A.exe
-
Size
4.3MB
-
Sample
210915-jda6esdbel
-
MD5
570090a065948e6d439e2b99f999f0a4
-
SHA1
0f2bf4aad8e12a340e37457566edb9e6816eee9e
-
SHA256
12ee6f798c7c0ade1d6f99819e7a4e714a22abb9a4c5b78506413dfc1d97eb3a
-
SHA512
37e5d43d7fb893556aff079a696e13db4b7d186576a268eeb512a86790caf9fc370e4b737a6c3cc53b46bd5c311a801f0733c9c414e0750aa28db78e6cf3ee01
Static task
static1
Behavioral task
behavioral1
Sample
Latex+A5+Booklet+Template-PLND-ABMwKmEcmwAABTwCAEdCFwASAN3i2g8A.exe
Resource
win7-en
Malware Config
Extracted
metasploit
windows/single_exec
Targets
-
-
Target
Latex+A5+Booklet+Template-PLND-ABMwKmEcmwAABTwCAEdCFwASAN3i2g8A.exe
-
Size
4.3MB
-
MD5
570090a065948e6d439e2b99f999f0a4
-
SHA1
0f2bf4aad8e12a340e37457566edb9e6816eee9e
-
SHA256
12ee6f798c7c0ade1d6f99819e7a4e714a22abb9a4c5b78506413dfc1d97eb3a
-
SHA512
37e5d43d7fb893556aff079a696e13db4b7d186576a268eeb512a86790caf9fc370e4b737a6c3cc53b46bd5c311a801f0733c9c414e0750aa28db78e6cf3ee01
-
Glupteba Payload
-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-