General
-
Target
b270e245132cf6624fc96642532a00c0a16681f59542220ad2c389d45865141f
-
Size
298KB
-
Sample
211012-wg5knachb5
-
MD5
a80859c1cd44daad1450948a1276bc0d
-
SHA1
46396892b9cafb2e59b8f667ec7822d0435384bb
-
SHA256
b270e245132cf6624fc96642532a00c0a16681f59542220ad2c389d45865141f
-
SHA512
ce68470318b8472b30aeee8778802ca4c9175f075a9c19c8332a08a6a8518a2f157a9e2ccaedba1d42f83f591d3c5f233ee1b8b8fbb90589aae82c9dea68352c
Static task
static1
Behavioral task
behavioral1
Sample
b270e245132cf6624fc96642532a00c0a16681f59542220ad2c389d45865141f.dll
Resource
win7-en-20210920
Malware Config
Extracted
zloader
nut
22/03
https://svilapp.svgipsar.org/post.php
https://nadar-gis.com/post.php
https://crearqarquitectos.com/post.php
https://crown-sign.com/post.php
https://dainikjahan.com/post.php
https://denatureedutech.com/post.php
https://alekllemtilaro.tk/post.php
Targets
-
-
Target
b270e245132cf6624fc96642532a00c0a16681f59542220ad2c389d45865141f
-
Size
298KB
-
MD5
a80859c1cd44daad1450948a1276bc0d
-
SHA1
46396892b9cafb2e59b8f667ec7822d0435384bb
-
SHA256
b270e245132cf6624fc96642532a00c0a16681f59542220ad2c389d45865141f
-
SHA512
ce68470318b8472b30aeee8778802ca4c9175f075a9c19c8332a08a6a8518a2f157a9e2ccaedba1d42f83f591d3c5f233ee1b8b8fbb90589aae82c9dea68352c
-
Blocklisted process makes network request
-
Suspicious use of SetThreadContext
-