General
-
Target
da7da0fa7704b3dedbbd6f3b50984a6237f613131384fc682e62b228937b6a0f
-
Size
2.4MB
-
Sample
220121-22ahxacdhm
-
MD5
2a259d09d59c56d15b9104cb7576b4d8
-
SHA1
2a23f228bbeb2fb062e4ff7ff5bbca841e51ac4a
-
SHA256
da7da0fa7704b3dedbbd6f3b50984a6237f613131384fc682e62b228937b6a0f
-
SHA512
06729b4a11fe0c52b13f1379ba5457e502c4f7568f0d2ee789b18f1774128fd6e0959cf1c427899440d4c9fc4245098d88d246f8f4ead6d766e52a5c3cae830e
Static task
static1
Behavioral task
behavioral1
Sample
da7da0fa7704b3dedbbd6f3b50984a6237f613131384fc682e62b228937b6a0f.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
da7da0fa7704b3dedbbd6f3b50984a6237f613131384fc682e62b228937b6a0f.exe
Resource
win10-en-20211208
Malware Config
Extracted
bitrat
1.35
publiquilla.linkpc.net:9091
-
communication_password
bfdba24ee3d61f0260c4dc1034c3ee43
-
install_dir
System32dll
-
install_file
System32077273dll.exe
-
tor_process
tor
Targets
-
-
Target
da7da0fa7704b3dedbbd6f3b50984a6237f613131384fc682e62b228937b6a0f
-
Size
2.4MB
-
MD5
2a259d09d59c56d15b9104cb7576b4d8
-
SHA1
2a23f228bbeb2fb062e4ff7ff5bbca841e51ac4a
-
SHA256
da7da0fa7704b3dedbbd6f3b50984a6237f613131384fc682e62b228937b6a0f
-
SHA512
06729b4a11fe0c52b13f1379ba5457e502c4f7568f0d2ee789b18f1774128fd6e0959cf1c427899440d4c9fc4245098d88d246f8f4ead6d766e52a5c3cae830e
Score10/10-
Adds Run key to start application
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-