General
-
Target
SecuriteInfo.com.W32.AIDetectNet.01.4166.15764
-
Size
52KB
-
Sample
220706-v8vdbsfdgr
-
MD5
1f90ecea05ef9adfaa814d95a750f4ef
-
SHA1
71bfea6663dbfc06e228113e44723e91bf46f619
-
SHA256
4f3642f36e5ba22aec031ad20349200b39114fdb470b78247f1c1a5626146a87
-
SHA512
644696c4973d8ca08c8d054238688aa2a76ea97abe434608e77d82def125d714f21d59b8d35faceb80fdca52b6a0a580f7c1303c2c67fa65088df70c4d5d05cb
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.W32.AIDetectNet.01.4166.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.W32.AIDetectNet.01.4166.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
SecuriteInfo.com.W32.AIDetectNet.01.4166.15764
-
Size
52KB
-
MD5
1f90ecea05ef9adfaa814d95a750f4ef
-
SHA1
71bfea6663dbfc06e228113e44723e91bf46f619
-
SHA256
4f3642f36e5ba22aec031ad20349200b39114fdb470b78247f1c1a5626146a87
-
SHA512
644696c4973d8ca08c8d054238688aa2a76ea97abe434608e77d82def125d714f21d59b8d35faceb80fdca52b6a0a580f7c1303c2c67fa65088df70c4d5d05cb
Score10/10-
suricata: ET MALWARE Generic AsyncRAT Style SSL Cert
suricata: ET MALWARE Generic AsyncRAT Style SSL Cert
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-