General
-
Target
016f4f498f072150d0c77506de50cde1b3c2325275736cd7f0bae7cf32d2ccd4
-
Size
238KB
-
Sample
220523-ylw57aghel
-
MD5
5c06ffede9bd8b27873f8c64f5aa2fef
-
SHA1
717672bfddd6b19c0324e98e4b6c9a9952321540
-
SHA256
016f4f498f072150d0c77506de50cde1b3c2325275736cd7f0bae7cf32d2ccd4
-
SHA512
b4f27a3d01cc2cd7fdd6ce9e80b9c8cfcfad1b9cb9ef2d6fc411fe3dcbef88360af1c33e51e9557cd251ed08dd45fea88286962700fafcc9bc966a72e7d048f3
Static task
static1
Behavioral task
behavioral1
Sample
016f4f498f072150d0c77506de50cde1b3c2325275736cd7f0bae7cf32d2ccd4.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
016f4f498f072150d0c77506de50cde1b3c2325275736cd7f0bae7cf32d2ccd4.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
016f4f498f072150d0c77506de50cde1b3c2325275736cd7f0bae7cf32d2ccd4
-
Size
238KB
-
MD5
5c06ffede9bd8b27873f8c64f5aa2fef
-
SHA1
717672bfddd6b19c0324e98e4b6c9a9952321540
-
SHA256
016f4f498f072150d0c77506de50cde1b3c2325275736cd7f0bae7cf32d2ccd4
-
SHA512
b4f27a3d01cc2cd7fdd6ce9e80b9c8cfcfad1b9cb9ef2d6fc411fe3dcbef88360af1c33e51e9557cd251ed08dd45fea88286962700fafcc9bc966a72e7d048f3
Score10/10-
suricata: ET MALWARE Ransomware/Cerber Checkin 2
suricata: ET MALWARE Ransomware/Cerber Checkin 2
-
suricata: ET MALWARE Ransomware/Cerber Checkin M3 (7)
suricata: ET MALWARE Ransomware/Cerber Checkin M3 (7)
-
Contacts a large (512) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Contacts a large (533) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-