General
-
Target
10000000.bcdf.dll
-
Size
50KB
-
Sample
211002-zjfabsegb5
-
MD5
4d4be2544b2e0a61beac5371a7695e04
-
SHA1
fabc2d4e221280b53a57814beb8b44d73855d4d6
-
SHA256
f745ae59b8e4c4c5d5d0872b86168bc8c82fef459bd2303993ac166cbe79acf9
-
SHA512
bcd9094363ea96d50530609a14cbeebd6db6e3ff285fd2556a6a11d7645244bb8da15848803a666931dde48cf93a94a238c1d16b778fccd6255bd6c5f20d83a3
Malware Config
Extracted
squirrelwaffle
pop.vicamtaynam.com/VtyiHAft
snsvidyapeeth.in/aXmo2Dr3
trinitytesttubebaby.com/QR2JvfE3Sv
iconskw.com/cqdPtAbZ
ebookchuyennganh.com/v9PMvQDxHK8W
alsader.net/BHdQaiQ9rt
avyanshglobal.com/6pYjPlqf
primahills-online.com/ypCiZn7tMx
antoniocastroycia.com.co/WHe08obY
apexbiotech.net/VQgunQ4t5Ue
vscm.in/V3tYKxDz
sinaloworx.co.za/3GilA8Eo3r
dancongnghe.xyz/yRByhX6J3REI
trajesuniformes.com.br/qQofZMaJm
fiorenzapaes.com.br/PGYpETW7
astetinternational.com/arW5e44Y7vzO
razisystem.ir/MqvvkX0cWvn
krishnaiti.org.in/rWA02HQY4
Targets
-
-
Target
10000000.bcdf.dll
-
Size
50KB
-
MD5
4d4be2544b2e0a61beac5371a7695e04
-
SHA1
fabc2d4e221280b53a57814beb8b44d73855d4d6
-
SHA256
f745ae59b8e4c4c5d5d0872b86168bc8c82fef459bd2303993ac166cbe79acf9
-
SHA512
bcd9094363ea96d50530609a14cbeebd6db6e3ff285fd2556a6a11d7645244bb8da15848803a666931dde48cf93a94a238c1d16b778fccd6255bd6c5f20d83a3
Score10/10-
Suspicious use of NtCreateProcessExOtherParentProcess
-