General
-
Target
3c58dc33ac4d2aaabfbf4885c9e68546.exe
-
Size
495KB
-
Sample
210930-vld3tsabg3
-
MD5
3c58dc33ac4d2aaabfbf4885c9e68546
-
SHA1
73c9833aba4d750fda725b5896ea74c2c698ddab
-
SHA256
3481a1686a8c1b76d6b8e2b4c1663761dfccb13fb69e74a8767b1dd5dd7186e0
-
SHA512
6aa9579e94523ed40c28c874d64c5e0066c6574ac455e38dfdea3d98fd3e34e9e1427c39d8a4a2054b1798a69e34646694e7484ae375235fb9f9f960d724daba
Static task
static1
Behavioral task
behavioral1
Sample
3c58dc33ac4d2aaabfbf4885c9e68546.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
3c58dc33ac4d2aaabfbf4885c9e68546.exe
Resource
win10v20210408
Malware Config
Extracted
raccoon
f6d7183c9e82d2a9b81e6c0608450aa66cefb51f
-
url4cnc
https://t.me/justoprostohello
Targets
-
-
Target
3c58dc33ac4d2aaabfbf4885c9e68546.exe
-
Size
495KB
-
MD5
3c58dc33ac4d2aaabfbf4885c9e68546
-
SHA1
73c9833aba4d750fda725b5896ea74c2c698ddab
-
SHA256
3481a1686a8c1b76d6b8e2b4c1663761dfccb13fb69e74a8767b1dd5dd7186e0
-
SHA512
6aa9579e94523ed40c28c874d64c5e0066c6574ac455e38dfdea3d98fd3e34e9e1427c39d8a4a2054b1798a69e34646694e7484ae375235fb9f9f960d724daba
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-