General
-
Target
386092340013d389cffccac14e036302
-
Size
5.0MB
-
Sample
220719-xel6zahccm
-
MD5
386092340013d389cffccac14e036302
-
SHA1
91b814649d12387f8e75508185156c0fa9afa16a
-
SHA256
a0c9409b961f5f143758c6f21ffdf11d77a60e3acec562bed43f656e2f1e6976
-
SHA512
7080cce57dc5be085f20105b0b565c1dc1378b26f50e0075cf79f3a3c7d589c04a362071c4c227d03ca90ec16a78584b5e9004db1022d4f03f38ab3eab3b425d
Static task
static1
Behavioral task
behavioral1
Sample
386092340013d389cffccac14e036302.dll
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
386092340013d389cffccac14e036302.dll
Resource
win10v2004-20220718-en
Malware Config
Targets
-
-
Target
386092340013d389cffccac14e036302
-
Size
5.0MB
-
MD5
386092340013d389cffccac14e036302
-
SHA1
91b814649d12387f8e75508185156c0fa9afa16a
-
SHA256
a0c9409b961f5f143758c6f21ffdf11d77a60e3acec562bed43f656e2f1e6976
-
SHA512
7080cce57dc5be085f20105b0b565c1dc1378b26f50e0075cf79f3a3c7d589c04a362071c4c227d03ca90ec16a78584b5e9004db1022d4f03f38ab3eab3b425d
Score10/10-
Contacts a large (3180) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Contacts a large (1176) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-