Analysis
-
max time kernel
158s -
max time network
118s -
platform
windows7_x64 -
resource
win7-en-20211208 -
submitted
26-01-2022 14:54
Static task
static1
Behavioral task
behavioral1
Sample
68c2217c94a19655ebc79c469071d11f0b731f4ca39f15631a641375fae4a2a5.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
68c2217c94a19655ebc79c469071d11f0b731f4ca39f15631a641375fae4a2a5.exe
Resource
win10-en-20211208
General
-
Target
68c2217c94a19655ebc79c469071d11f0b731f4ca39f15631a641375fae4a2a5.exe
-
Size
16KB
-
MD5
dafc7c426550a5df091c08a2a311a8d5
-
SHA1
c8e08eafa8fe6d53a1e43bcdbf9ef44d5978428b
-
SHA256
68c2217c94a19655ebc79c469071d11f0b731f4ca39f15631a641375fae4a2a5
-
SHA512
36938621c89788e51e55cd63a6fcb84195202d9ab1772057030bda102618739190f71a46c015ae0d855eb8d2e42d9e222e3ef3ffd19dd221ec08de89946e862c
Malware Config
Extracted
nworm
v0.3.8
Jonathin8068-24257.portmap.host:60149
43808f53
Signatures
-
NWorm
A TrickBot module used to propagate to vulnerable domain controllers.