General
-
Target
GuardCatAVSetup-Silent.exe.bin
-
Size
9.3MB
-
Sample
211021-mnkz6abacl
-
MD5
127850a751efe17017e9c9be35dad10c
-
SHA1
45b18c91a7da7616838b89b4d4c9b465d60d619a
-
SHA256
8177bf9adfc318fef55967e6e98f1166b22555c769fcaeb66d61b70338b94183
-
SHA512
76ff77e65a34b2f5ff78d2be469119eefe740f38b350b7d572a430c54cabed6634ba473bbb2fa0595c060a410a3fbe01c27e163058c250abd31153647b00237d
Static task
static1
Behavioral task
behavioral1
Sample
GuardCatAVSetup-Silent.exe.bin.exe
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
GuardCatAVSetup-Silent.exe.bin.exe
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
GuardCatAVSetup-Silent.exe.bin
-
Size
9.3MB
-
MD5
127850a751efe17017e9c9be35dad10c
-
SHA1
45b18c91a7da7616838b89b4d4c9b465d60d619a
-
SHA256
8177bf9adfc318fef55967e6e98f1166b22555c769fcaeb66d61b70338b94183
-
SHA512
76ff77e65a34b2f5ff78d2be469119eefe740f38b350b7d572a430c54cabed6634ba473bbb2fa0595c060a410a3fbe01c27e163058c250abd31153647b00237d
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-