General
-
Target
01C0C4F5A39A9AD6FB6E98D41BFF8284FBD5FB8C57E3F.exe
-
Size
61KB
-
Sample
210918-wlvw1scddq
-
MD5
2f380fb35a4e38df693dbe4250388050
-
SHA1
3eef31f16de114ed279dfa0c5cf453b598bfe64a
-
SHA256
01c0c4f5a39a9ad6fb6e98d41bff8284fbd5fb8c57e3f7d0c061b99d9690c743
-
SHA512
34ad105fc09740015e9a37a4f1a4eb0833da05893e33e42d73c9043029733fd7f81a0458e5f68d02ecf5668b8543195419880f870e3c1591780381220790a189
Static task
static1
Behavioral task
behavioral1
Sample
01C0C4F5A39A9AD6FB6E98D41BFF8284FBD5FB8C57E3F.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
01C0C4F5A39A9AD6FB6E98D41BFF8284FBD5FB8C57E3F.exe
Resource
win10-en
Malware Config
Targets
-
-
Target
01C0C4F5A39A9AD6FB6E98D41BFF8284FBD5FB8C57E3F.exe
-
Size
61KB
-
MD5
2f380fb35a4e38df693dbe4250388050
-
SHA1
3eef31f16de114ed279dfa0c5cf453b598bfe64a
-
SHA256
01c0c4f5a39a9ad6fb6e98d41bff8284fbd5fb8c57e3f7d0c061b99d9690c743
-
SHA512
34ad105fc09740015e9a37a4f1a4eb0833da05893e33e42d73c9043029733fd7f81a0458e5f68d02ecf5668b8543195419880f870e3c1591780381220790a189
Score10/10-
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
suricata: ET MALWARE Generic njRAT/Bladabindi CnC Activity (ll)
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-