General
-
Target
setup.exe
-
Size
531KB
-
Sample
211020-we5smsacgp
-
MD5
3c8978cc4c32a700553ed39c6091a0a2
-
SHA1
d0443973ea5333d3fd8791a83aae83af20623533
-
SHA256
4cd2920c8c741ccbf40c29ff706e6798c4d0afd6b3202b6b85fbe851172114b5
-
SHA512
3a6d39dab2dea45e53de3475c60732483b2d6831a0de6235faa3517414c79a92741f9b56040ed6e31e088d689b158f93cc5d7e47ced1fb00a2e681c502240ce2
Static task
static1
Behavioral task
behavioral1
Sample
setup.exe
Resource
win10-en-20211014
Malware Config
Targets
-
-
Target
setup.exe
-
Size
531KB
-
MD5
3c8978cc4c32a700553ed39c6091a0a2
-
SHA1
d0443973ea5333d3fd8791a83aae83af20623533
-
SHA256
4cd2920c8c741ccbf40c29ff706e6798c4d0afd6b3202b6b85fbe851172114b5
-
SHA512
3a6d39dab2dea45e53de3475c60732483b2d6831a0de6235faa3517414c79a92741f9b56040ed6e31e088d689b158f93cc5d7e47ced1fb00a2e681c502240ce2
Score10/10-
Detected phishing page
-
Suspicious use of NtCreateProcessExOtherParentProcess
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-