General
-
Target
1193b0d5e159fbb4d53723fc68fc1b49b9c1fedfb82dc262fae198dd89055d32
-
Size
290KB
-
Sample
220604-cytd6sabdj
-
MD5
141e1307eeb81a647852eb96ffec7772
-
SHA1
772ed822199768284c45c81fca1924a5ff6c6444
-
SHA256
1193b0d5e159fbb4d53723fc68fc1b49b9c1fedfb82dc262fae198dd89055d32
-
SHA512
3762347a96e57fc11ae5c04ab13b8938262e9a7c41e42ea14c5ac83f011b10c6fbab350d84b7b4f5c5ec267475dac417dae9ae1999734317b9895daa153b1867
Static task
static1
Behavioral task
behavioral1
Sample
1193b0d5e159fbb4d53723fc68fc1b49b9c1fedfb82dc262fae198dd89055d32.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
1193b0d5e159fbb4d53723fc68fc1b49b9c1fedfb82dc262fae198dd89055d32.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
1193b0d5e159fbb4d53723fc68fc1b49b9c1fedfb82dc262fae198dd89055d32
-
Size
290KB
-
MD5
141e1307eeb81a647852eb96ffec7772
-
SHA1
772ed822199768284c45c81fca1924a5ff6c6444
-
SHA256
1193b0d5e159fbb4d53723fc68fc1b49b9c1fedfb82dc262fae198dd89055d32
-
SHA512
3762347a96e57fc11ae5c04ab13b8938262e9a7c41e42ea14c5ac83f011b10c6fbab350d84b7b4f5c5ec267475dac417dae9ae1999734317b9895daa153b1867
Score8/10-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-