General
-
Target
gunzipped.exe
-
Size
672KB
-
Sample
220412-yr4gfsfgfq
-
MD5
f6791118160f20fdabe7551a92d2273c
-
SHA1
ca101b92d768d4884c9de4563921b0f4d9543b62
-
SHA256
79d55a99ff2f41da092fba879ab1858a9f68619c50eb9b65eebb1b45a500e3bb
-
SHA512
ef350f7289c086647860bf5ef226691b9d1500d3bd962dfa8aa5c391a10fd98e636f7a4fa15352471fcd5878f813efd50b479a58c584da4464cfb57f54a97773
Static task
static1
Behavioral task
behavioral1
Sample
gunzipped.exe
Resource
win7-20220331-en
Behavioral task
behavioral2
Sample
gunzipped.exe
Resource
win10v2004-20220331-en
Malware Config
Targets
-
-
Target
gunzipped.exe
-
Size
672KB
-
MD5
f6791118160f20fdabe7551a92d2273c
-
SHA1
ca101b92d768d4884c9de4563921b0f4d9543b62
-
SHA256
79d55a99ff2f41da092fba879ab1858a9f68619c50eb9b65eebb1b45a500e3bb
-
SHA512
ef350f7289c086647860bf5ef226691b9d1500d3bd962dfa8aa5c391a10fd98e636f7a4fa15352471fcd5878f813efd50b479a58c584da4464cfb57f54a97773
Score10/10-
Adds policy Run key to start application
-
Accesses Microsoft Outlook accounts
-
Adds Run key to start application
-
Program crash
-
Suspicious use of SetThreadContext
-