General
-
Target
1644741f3fb07fca3d0de98ebb1051dc0c39f059f197b9dfc26902314cc111d9
-
Size
1.0MB
-
Sample
220609-bahr4aead4
-
MD5
dfa4d03c1a581f5c28ee09588787f354
-
SHA1
0431fc5681d0f2f78f69ba974378ad551fc91053
-
SHA256
1644741f3fb07fca3d0de98ebb1051dc0c39f059f197b9dfc26902314cc111d9
-
SHA512
c1795df9ebde7413f7d08435ef014b3b9f514dc12244c62cc438b2f2d1d1313cdebb6526b1c15cf35cf0a44d9c83318fc690ff566f2fddbbfed940a2a031450e
Static task
static1
Behavioral task
behavioral1
Sample
1644741f3fb07fca3d0de98ebb1051dc0c39f059f197b9dfc26902314cc111d9.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
1644741f3fb07fca3d0de98ebb1051dc0c39f059f197b9dfc26902314cc111d9.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
1644741f3fb07fca3d0de98ebb1051dc0c39f059f197b9dfc26902314cc111d9
-
Size
1.0MB
-
MD5
dfa4d03c1a581f5c28ee09588787f354
-
SHA1
0431fc5681d0f2f78f69ba974378ad551fc91053
-
SHA256
1644741f3fb07fca3d0de98ebb1051dc0c39f059f197b9dfc26902314cc111d9
-
SHA512
c1795df9ebde7413f7d08435ef014b3b9f514dc12244c62cc438b2f2d1d1313cdebb6526b1c15cf35cf0a44d9c83318fc690ff566f2fddbbfed940a2a031450e
Score10/10-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-