General
-
Target
11771a6754c1edb3b5a3afd972716f49222a69e6e6caa94c4cd6933ab50ca9e8
-
Size
277KB
-
Sample
220604-ehvy6shcg8
-
MD5
8c1b36b24a67666740ebed501c1280c5
-
SHA1
180af0ea1cd6c180ae5dcf91fbe13c585af40282
-
SHA256
11771a6754c1edb3b5a3afd972716f49222a69e6e6caa94c4cd6933ab50ca9e8
-
SHA512
fb58aa4aef8e0c4f239884ca229405934de696c36d5a44cf36bb4b91a60ef3b0428b70cbaedc3a8f735771ea049f9631a06b5860473c49f008108e3d47935dab
Static task
static1
Behavioral task
behavioral1
Sample
11771a6754c1edb3b5a3afd972716f49222a69e6e6caa94c4cd6933ab50ca9e8.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
11771a6754c1edb3b5a3afd972716f49222a69e6e6caa94c4cd6933ab50ca9e8.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
11771a6754c1edb3b5a3afd972716f49222a69e6e6caa94c4cd6933ab50ca9e8
-
Size
277KB
-
MD5
8c1b36b24a67666740ebed501c1280c5
-
SHA1
180af0ea1cd6c180ae5dcf91fbe13c585af40282
-
SHA256
11771a6754c1edb3b5a3afd972716f49222a69e6e6caa94c4cd6933ab50ca9e8
-
SHA512
fb58aa4aef8e0c4f239884ca229405934de696c36d5a44cf36bb4b91a60ef3b0428b70cbaedc3a8f735771ea049f9631a06b5860473c49f008108e3d47935dab
Score8/10-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-