General
-
Target
Skype.Profiling.dll
-
Size
275KB
-
Sample
220120-jlzhzsggh2
-
MD5
d6e290500e5fcae7e7d67fc45abaa9cd
-
SHA1
f8b11c77c54b6d0d7017d834bd0708316f577d08
-
SHA256
cd1c9d25523532f142c9f9b84f26fbb5abb8459c7eee99cf13b3e7f827c9d1a3
-
SHA512
fc3c37c75bc91545154cced245df33f1e61b7e8467ee187de932d7b05ae9476e507335320e129f60b06f45fb244a561c1d51bfe6b9e61a3f908cf582b3b25982
Static task
static1
Behavioral task
behavioral1
Sample
Skype.Profiling.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
Skype.Profiling.dll
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
Skype.Profiling.dll
-
Size
275KB
-
MD5
d6e290500e5fcae7e7d67fc45abaa9cd
-
SHA1
f8b11c77c54b6d0d7017d834bd0708316f577d08
-
SHA256
cd1c9d25523532f142c9f9b84f26fbb5abb8459c7eee99cf13b3e7f827c9d1a3
-
SHA512
fc3c37c75bc91545154cced245df33f1e61b7e8467ee187de932d7b05ae9476e507335320e129f60b06f45fb244a561c1d51bfe6b9e61a3f908cf582b3b25982
Score10/10-
Blocklisted process makes network request
-
Sets service image path in registry
-
Suspicious use of SetThreadContext
-