General

  • Target

    1aeb8923f2bb1530e02d8db692d091185cb52f39e7b2f5ee00b3d8cb7c096765

  • Size

    912KB

  • Sample

    220213-j8981afgg3

  • MD5

    b12555c84877e47f83197a5bb51c54a8

  • SHA1

    e0645541295310199ba2a48809105d4640f6c1f8

  • SHA256

    1aeb8923f2bb1530e02d8db692d091185cb52f39e7b2f5ee00b3d8cb7c096765

  • SHA512

    d1ed682ba4b3a10e280c7491f2473f2cc67c0cf42baa3330ee744d6bec0c0b2000d85e274632cfa355215bc8d0909579dd95839a5603d7011c6b4b87431e9271

Score
10/10

Malware Config

Extracted

Family

cryptbot

C2

fhjweheed74.top

morteqabi07.top

Attributes
  • payload_url

    http://ewsjasea09.top/download.php?file=lv.exe

Targets

    • Target

      1aeb8923f2bb1530e02d8db692d091185cb52f39e7b2f5ee00b3d8cb7c096765

    • Size

      912KB

    • MD5

      b12555c84877e47f83197a5bb51c54a8

    • SHA1

      e0645541295310199ba2a48809105d4640f6c1f8

    • SHA256

      1aeb8923f2bb1530e02d8db692d091185cb52f39e7b2f5ee00b3d8cb7c096765

    • SHA512

      d1ed682ba4b3a10e280c7491f2473f2cc67c0cf42baa3330ee744d6bec0c0b2000d85e274632cfa355215bc8d0909579dd95839a5603d7011c6b4b87431e9271

    Score
    10/10
    • Suspicious use of NtCreateProcessExOtherParentProcess

MITRE ATT&CK Enterprise v6

Tasks