General
-
Target
New_Active_Pass_1234.exe
-
Size
5.1MB
-
Sample
220223-xkpt2scdfp
-
MD5
33ba1406d282fb20e5ddc34011e430c6
-
SHA1
8f92e1ebeb8508bb01464f1f7badc8d7a36b6706
-
SHA256
f906f99d0cea3668af8e8b4d16671c2365d8e5190943114b8a3a136801914d9b
-
SHA512
6e9508c675a023b358e3728ec0f74acd140af793d28b4737b18098d37310879fb26cc54d47a1d0740301dc41c641ae56e1e053b165a00ef3844cf0631051179f
Static task
static1
Behavioral task
behavioral1
Sample
New_Active_Pass_1234.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
New_Active_Pass_1234.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
New_Active_Pass_1234.exe
-
Size
5.1MB
-
MD5
33ba1406d282fb20e5ddc34011e430c6
-
SHA1
8f92e1ebeb8508bb01464f1f7badc8d7a36b6706
-
SHA256
f906f99d0cea3668af8e8b4d16671c2365d8e5190943114b8a3a136801914d9b
-
SHA512
6e9508c675a023b358e3728ec0f74acd140af793d28b4737b18098d37310879fb26cc54d47a1d0740301dc41c641ae56e1e053b165a00ef3844cf0631051179f
Score10/10-
Suspicious use of NtCreateProcessExOtherParentProcess
-