General
-
Target
01da9c63f98e7797e7b9c2c67cac2ea338a05a3cdae968f27667ec8f778507f6
-
Size
274KB
-
Sample
220523-v88kyscdhq
-
MD5
1871068c7c46fa590774e55dc48f5c01
-
SHA1
6404f22112a9649cf48043907670d496446c3ad0
-
SHA256
01da9c63f98e7797e7b9c2c67cac2ea338a05a3cdae968f27667ec8f778507f6
-
SHA512
0655eda913675831b59e6d3bda200e48b6aba479ab2c281d6f3980309fd892a9abab5084cab3425a327f4482512cd2a3c308b6bbcd1fd50c554d983ed3c8ec42
Static task
static1
Behavioral task
behavioral1
Sample
01da9c63f98e7797e7b9c2c67cac2ea338a05a3cdae968f27667ec8f778507f6.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
01da9c63f98e7797e7b9c2c67cac2ea338a05a3cdae968f27667ec8f778507f6.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
01da9c63f98e7797e7b9c2c67cac2ea338a05a3cdae968f27667ec8f778507f6
-
Size
274KB
-
MD5
1871068c7c46fa590774e55dc48f5c01
-
SHA1
6404f22112a9649cf48043907670d496446c3ad0
-
SHA256
01da9c63f98e7797e7b9c2c67cac2ea338a05a3cdae968f27667ec8f778507f6
-
SHA512
0655eda913675831b59e6d3bda200e48b6aba479ab2c281d6f3980309fd892a9abab5084cab3425a327f4482512cd2a3c308b6bbcd1fd50c554d983ed3c8ec42
Score10/10-
suricata: ET MALWARE Ransomware/Cerber Checkin 2
suricata: ET MALWARE Ransomware/Cerber Checkin 2
-
suricata: ET MALWARE Ransomware/Cerber Checkin M3 (16)
suricata: ET MALWARE Ransomware/Cerber Checkin M3 (16)
-
Contacts a large (512) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Contacts a large (523) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-