General
-
Target
okta.swa.ie-5.33.0.exe
-
Size
2.6MB
-
Sample
210924-y6twkaaab3
-
MD5
b318e26f2c2355ea929a77e0c0f96200
-
SHA1
1caacbd90bc1d0bdca3616234de909fa84961a34
-
SHA256
43a5d2374dae6ac4c70aecd7570b1df3f2bd4ee8c85ab9613762502dca2f1b0d
-
SHA512
cdc0a430f520f4837415d36f5e8b8af69589b429d304f2831a4bfb1a89771210b55db127ebaf718c53c8d5bfed6d292ca4762c726a7b14d546f0f9183718b340
Static task
static1
Behavioral task
behavioral1
Sample
okta.swa.ie-5.33.0.exe
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
okta.swa.ie-5.33.0.exe
-
Size
2.6MB
-
MD5
b318e26f2c2355ea929a77e0c0f96200
-
SHA1
1caacbd90bc1d0bdca3616234de909fa84961a34
-
SHA256
43a5d2374dae6ac4c70aecd7570b1df3f2bd4ee8c85ab9613762502dca2f1b0d
-
SHA512
cdc0a430f520f4837415d36f5e8b8af69589b429d304f2831a4bfb1a89771210b55db127ebaf718c53c8d5bfed6d292ca4762c726a7b14d546f0f9183718b340
Score10/10-
Registers COM server for autorun
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-