General
-
Target
b6149807f9c7c1c84009208e0b25d1b00945150fe5de42a828870973194459cb
-
Size
50KB
-
Sample
211113-v6k2wafcd8
-
MD5
904d5e65ee31852db764d1b0bb92e1b1
-
SHA1
b58e65a8385ee5fab36a4913033b67e6d9dae83d
-
SHA256
b6149807f9c7c1c84009208e0b25d1b00945150fe5de42a828870973194459cb
-
SHA512
f2bd6fa02c7a4a7dbc936ad861a4f4cc8b99ee77434ff459b8718fcf918cda57881a5d19496af4ced2cacaad76229e0fd8efc0ef413428fdad8d3fcb83e104e2
Malware Config
Extracted
squirrelwaffle
http://acdlimited.com/2u6aW9Pfe
http://jornaldasoficinas.com/ZF8GKIGVDupL
http://orldofjain.com/lMsTA7tSYpe
http://altayaralsudani.net/SSUsPgb7PHgC
http://hoteloaktree.com/QthLWsZsVgb
http://aterwellnessinc.com/U7D0sswwp
http://sirifinco.com/Urbhq9wO50j
http://ordpress17.com/5WG6Z62sKWo
http://mohsinkhanfoundation.com/pcQLeLMbur
http://lendbiz.vn/xj3BhHtMbf
http://geosever.rs/ObHP1CHt
http://nuevainfotech.com/xCNyTjzkoe
http://dadabhoy.pk/m6rQE94U
http://111
http://sjgrand.lk/zvMYuQqEZj
http://erogholding.com/GFM1QcCFk
http://armordetailing.rs/lgfrZb4Re6WO
http://lefrenchwineclub.com/eRUGdDox
Targets
-
-
Target
b6149807f9c7c1c84009208e0b25d1b00945150fe5de42a828870973194459cb
-
Size
50KB
-
MD5
904d5e65ee31852db764d1b0bb92e1b1
-
SHA1
b58e65a8385ee5fab36a4913033b67e6d9dae83d
-
SHA256
b6149807f9c7c1c84009208e0b25d1b00945150fe5de42a828870973194459cb
-
SHA512
f2bd6fa02c7a4a7dbc936ad861a4f4cc8b99ee77434ff459b8718fcf918cda57881a5d19496af4ced2cacaad76229e0fd8efc0ef413428fdad8d3fcb83e104e2
Score10/10-
Suspicious use of NtCreateProcessExOtherParentProcess
-