General
-
Target
5d4c0ec76cc2237a6cdf7efc4503a87da8522a6fef2b9e0177d5ae7fd3907046
-
Size
2.7MB
-
Sample
220121-3tkvcaded6
-
MD5
8ec41bd349b5ccf8ab4d30d5a6fbd2ef
-
SHA1
2151a8245512959ae2ca22c39399011544e10c13
-
SHA256
5d4c0ec76cc2237a6cdf7efc4503a87da8522a6fef2b9e0177d5ae7fd3907046
-
SHA512
cbd000a98ecf8bb352e294d1a785cf23da18476bc696521381eccedc5ff9392f450053327a65dd7541dbcfe277c566f4a9f5aeb57e14915550ec2c1d23f72586
Static task
static1
Behavioral task
behavioral1
Sample
5d4c0ec76cc2237a6cdf7efc4503a87da8522a6fef2b9e0177d5ae7fd3907046.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
5d4c0ec76cc2237a6cdf7efc4503a87da8522a6fef2b9e0177d5ae7fd3907046.exe
Resource
win10-en-20211208
Malware Config
Extracted
bitrat
1.38
jairoandresotalvarorend.linkpc.net:9084
-
communication_password
bfdba24ee3d61f0260c4dc1034c3ee43
-
install_dir
winlogomdefenerec
-
install_file
winlogomdefenerec.exe
-
tor_process
tor
Targets
-
-
Target
5d4c0ec76cc2237a6cdf7efc4503a87da8522a6fef2b9e0177d5ae7fd3907046
-
Size
2.7MB
-
MD5
8ec41bd349b5ccf8ab4d30d5a6fbd2ef
-
SHA1
2151a8245512959ae2ca22c39399011544e10c13
-
SHA256
5d4c0ec76cc2237a6cdf7efc4503a87da8522a6fef2b9e0177d5ae7fd3907046
-
SHA512
cbd000a98ecf8bb352e294d1a785cf23da18476bc696521381eccedc5ff9392f450053327a65dd7541dbcfe277c566f4a9f5aeb57e14915550ec2c1d23f72586
Score10/10-
Adds Run key to start application
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-