General
-
Target
2.exe
-
Size
510KB
-
Sample
211022-k2nxvsbde7
-
MD5
831a54a05443e82a26a005ec26234144
-
SHA1
62c5e762a4daf6b70b0d56d8073f5fde4c178e8d
-
SHA256
7384abd36e0c316a0a343a943245ef61e6ecbcf6fe2aab10a8a0f2b72de7198d
-
SHA512
7208dd92027dc273a9d3249e0af4071a0980d233465be19d1546c613845292abe0a5c9119318e5b89c506b0614c8485dd779847db0db5d90b220f7febf4a9793
Static task
static1
Behavioral task
behavioral1
Sample
2.exe
Resource
win7-en-20211014
Malware Config
Extracted
formbook
4.1
m4bs
http://www.bridgedai.com/m4bs/
roofingmeetssolar.com
trefacs.info
jgmoamain.com
healthbenefitmanager.com
fasten-mit-diana.com
sijialutan.com
ouchsafety.net
mmcbrasil.com
rombachholdings.com
dksolutionsga.com
katherinewaltersconsulting.com
jfuejea.com
maintainarea.net
epilationnice.com
nightanddate.com
augustuslegacy.com
cricketaddicyor.com
norenasefamuf.rest
charlottesvilletowing.com
mortgagecreek.com
gbaguild.com
theinneroceanscall.com
menicheers.com
coursesrtltd.com
a68-28b8.biz
bitpanda-crypto-tracker.finance
pxhakl.com
vidatulum.com
hyid2021.com
walletmessage.com
zenstepsound.com
ypfycownxo.com
clubavendre.com
ynishatech.com
portalfolhagospel.com
beadiebandbros.com
vn8938.xyz
borghiemare.com
kreativestatement.com
covidnursinghomevictim.net
cruzmalone.com
revelation4kids.com
wellschool.net
anzinibrown.com
nynft.art
c5r-bdhh.biz
allindiappds.net
athingtowrite.com
eeds7xmu.com
powerthesaurus.info
sinwaeh.online
arizonaland4sale.com
glodeliveries.com
originalbeads.com
iranporomot.net
domain45.com
xbiquge.xyz
hayaletavcilari.xyz
ueg1jxm.xyz
abcdodinheiro.com
hdeventsportvlive24.xyz
sidejobprogramer.com
8xcauw.xyz
solitek-spain.com
Targets
-
-
Target
2.exe
-
Size
510KB
-
MD5
831a54a05443e82a26a005ec26234144
-
SHA1
62c5e762a4daf6b70b0d56d8073f5fde4c178e8d
-
SHA256
7384abd36e0c316a0a343a943245ef61e6ecbcf6fe2aab10a8a0f2b72de7198d
-
SHA512
7208dd92027dc273a9d3249e0af4071a0980d233465be19d1546c613845292abe0a5c9119318e5b89c506b0614c8485dd779847db0db5d90b220f7febf4a9793
-
Formbook Payload
-
Deletes itself
-
Suspicious use of SetThreadContext
-