General
-
Target
5520228239966208.zip
-
Size
1.2MB
-
Sample
211101-vsh1csfcbm
-
MD5
8fa4907be884f85ac983c2c4fde0496f
-
SHA1
bd180ae395b0d0af07b2232eb4943f192e7bbf92
-
SHA256
50fc9c87be18fd5b3476312abdd2b3eeb78a9adea8663261269c0f4eceb2944f
-
SHA512
9e9f807f3861b43560eaba6f75475f85ae22d986b6d48845b02927bd1beb4f9687ba8f25c43913fa24c7eb4c5272532efbc9d57ca79aefd6c94bbdaa8916343c
Behavioral task
behavioral1
Sample
51eaf8af57211f8d9e534f98413e71f4ddf5abcce806a111fc49a30d3bcec696.lnk
Resource
win7-en-20211014
Behavioral task
behavioral2
Sample
51eaf8af57211f8d9e534f98413e71f4ddf5abcce806a111fc49a30d3bcec696.lnk
Resource
win10-en-20210920
Malware Config
Targets
-
-
Target
51eaf8af57211f8d9e534f98413e71f4ddf5abcce806a111fc49a30d3bcec696
-
Size
1.3MB
-
MD5
4b9366f2dcab60d56d09e69e21d77d91
-
SHA1
a46318a25582c2616f33f49f7af986137637ba1d
-
SHA256
51eaf8af57211f8d9e534f98413e71f4ddf5abcce806a111fc49a30d3bcec696
-
SHA512
4b1bdfe4d09ed047122824536e5a1f59d533c8e1780a2cbab84398a8a1ba838de916ca99234b055a49e956d9fc539a961665764a3b89dc0d6736b8d6ce1b5d04
Score10/10-
suricata: ET MALWARE Observed Lazarus Related Domain (docs .gsheetpage .com in TLS SNI)
suricata: ET MALWARE Observed Lazarus Related Domain (docs .gsheetpage .com in TLS SNI)
-
Blocklisted process makes network request
-