General
-
Target
adc8f2156c4945882116b8516359cc67
-
Size
5.0MB
-
Sample
220720-bkh6lsaab7
-
MD5
adc8f2156c4945882116b8516359cc67
-
SHA1
ba6e3dd3516b3d8a6742879fb7e86e6218a0cfcb
-
SHA256
f2296230172c19e908b726e85bd9ac069f0b786718a28e066482dae2261ef5c2
-
SHA512
a1530ab0cbc5ace2c7c870d461f7f23208d49af5ad47b483a9d0cf0a5fb2f36b99b7ddec42f8268a0b9505428b328c78c653665c304a30864d2c1e34c431599e
Static task
static1
Behavioral task
behavioral1
Sample
adc8f2156c4945882116b8516359cc67.dll
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
adc8f2156c4945882116b8516359cc67.dll
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
adc8f2156c4945882116b8516359cc67
-
Size
5.0MB
-
MD5
adc8f2156c4945882116b8516359cc67
-
SHA1
ba6e3dd3516b3d8a6742879fb7e86e6218a0cfcb
-
SHA256
f2296230172c19e908b726e85bd9ac069f0b786718a28e066482dae2261ef5c2
-
SHA512
a1530ab0cbc5ace2c7c870d461f7f23208d49af5ad47b483a9d0cf0a5fb2f36b99b7ddec42f8268a0b9505428b328c78c653665c304a30864d2c1e34c431599e
Score10/10-
Contacts a large (3102) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Contacts a large (1252) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-