General
-
Target
FSZJXW.exe
-
Size
423KB
-
Sample
220716-qedfhacgfm
-
MD5
480130235a7e456be7d7de31c47e7d07
-
SHA1
67baa1f65ad6244485ddcf819c64717981e92d2b
-
SHA256
7b23a666b13afaaba8005119e47c2f29f396c08a4d087abd3a0a254d3a6dbbe4
-
SHA512
6726ed8447ba254156fc60dfbb6b01e5e89861aab682345577a35d3fbacebc7f7580dab04dad23e09727e67aa5a48f0616a8473a56f2287c4c8f25efab058c1d
Behavioral task
behavioral1
Sample
FSZJXW.exe
Resource
win7-20220414-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
http://www.klkjwre9fqwieluoi.info/
http://kukutrustnet777888.info/
Targets
-
-
Target
FSZJXW.exe
-
Size
423KB
-
MD5
480130235a7e456be7d7de31c47e7d07
-
SHA1
67baa1f65ad6244485ddcf819c64717981e92d2b
-
SHA256
7b23a666b13afaaba8005119e47c2f29f396c08a4d087abd3a0a254d3a6dbbe4
-
SHA512
6726ed8447ba254156fc60dfbb6b01e5e89861aab682345577a35d3fbacebc7f7580dab04dad23e09727e67aa5a48f0616a8473a56f2287c4c8f25efab058c1d
-
Modifies firewall policy service
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-