General
-
Target
WT2lH6ZAAx8eKUZ.exe
-
Size
1.1MB
-
Sample
220121-d8r5jadbhn
-
MD5
e53db947fce99439608c9a9553f69498
-
SHA1
95375e0e9ccf538d02b37ece3f6f9abc069d28b2
-
SHA256
17cb794e094d6cf35a700c399316360eb20eb235be61377ffd6dd0022ac3bb5f
-
SHA512
2f49647eabd7b743c265ebcd3f5c1e4ac4d315594558b3ca4214db8f0aa22ac57062ac9930e01b2ce4836db54e65bcc77f0d6e9106f64b14239b600e84fc315a
Static task
static1
Behavioral task
behavioral1
Sample
WT2lH6ZAAx8eKUZ.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
WT2lH6ZAAx8eKUZ.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
WT2lH6ZAAx8eKUZ.exe
-
Size
1.1MB
-
MD5
e53db947fce99439608c9a9553f69498
-
SHA1
95375e0e9ccf538d02b37ece3f6f9abc069d28b2
-
SHA256
17cb794e094d6cf35a700c399316360eb20eb235be61377ffd6dd0022ac3bb5f
-
SHA512
2f49647eabd7b743c265ebcd3f5c1e4ac4d315594558b3ca4214db8f0aa22ac57062ac9930e01b2ce4836db54e65bcc77f0d6e9106f64b14239b600e84fc315a
-
Async RAT payload
-
Suspicious use of SetThreadContext
-