General
-
Target
70a70ff5cb02c957d2f7cc32ceedd05f4514da1398ced8eb7a20bff9ee81f003
-
Size
27.9MB
-
Sample
220524-s5taragch2
-
MD5
49b9eb2450a722dd06f319a130efcb2c
-
SHA1
fd8cab9b53a78cd140708af8003954bc97b7599f
-
SHA256
70a70ff5cb02c957d2f7cc32ceedd05f4514da1398ced8eb7a20bff9ee81f003
-
SHA512
51c3d94cabfb76435de8a41245e101140e95134118d7d560abbdfc78e9d95fbb576eb6c645a29bb8f4d4fa642692e90d7ca2e9d4c4d2b1754f922180ca2315a0
Static task
static1
Behavioral task
behavioral1
Sample
70a70ff5cb02c957d2f7cc32ceedd05f4514da1398ced8eb7a20bff9ee81f003.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
70a70ff5cb02c957d2f7cc32ceedd05f4514da1398ced8eb7a20bff9ee81f003.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
70a70ff5cb02c957d2f7cc32ceedd05f4514da1398ced8eb7a20bff9ee81f003
-
Size
27.9MB
-
MD5
49b9eb2450a722dd06f319a130efcb2c
-
SHA1
fd8cab9b53a78cd140708af8003954bc97b7599f
-
SHA256
70a70ff5cb02c957d2f7cc32ceedd05f4514da1398ced8eb7a20bff9ee81f003
-
SHA512
51c3d94cabfb76435de8a41245e101140e95134118d7d560abbdfc78e9d95fbb576eb6c645a29bb8f4d4fa642692e90d7ca2e9d4c4d2b1754f922180ca2315a0
Score8/10-
Executes dropped EXE
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-