General
-
Target
570c24e1feb5f33e1863da0372ac0a64bd83b52163364c7b8901b9451312eff4
-
Size
1.1MB
-
Sample
220725-a83z9agbgr
-
MD5
8be9af1257fc0d320169ad34a3bb32f3
-
SHA1
350d0e9d177fde3760eb5cf3c01a96026137b03a
-
SHA256
570c24e1feb5f33e1863da0372ac0a64bd83b52163364c7b8901b9451312eff4
-
SHA512
009eb763aaaeaa559e04fc32e96e0ef94b8c832294f304f5606653809381128262ff0d744a53565b4144ff348e2cf112b74a157e7380d83165b89b0c07e48617
Static task
static1
Behavioral task
behavioral1
Sample
570c24e1feb5f33e1863da0372ac0a64bd83b52163364c7b8901b9451312eff4.exe
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
570c24e1feb5f33e1863da0372ac0a64bd83b52163364c7b8901b9451312eff4.exe
Resource
win10v2004-20220722-en
Malware Config
Targets
-
-
Target
570c24e1feb5f33e1863da0372ac0a64bd83b52163364c7b8901b9451312eff4
-
Size
1.1MB
-
MD5
8be9af1257fc0d320169ad34a3bb32f3
-
SHA1
350d0e9d177fde3760eb5cf3c01a96026137b03a
-
SHA256
570c24e1feb5f33e1863da0372ac0a64bd83b52163364c7b8901b9451312eff4
-
SHA512
009eb763aaaeaa559e04fc32e96e0ef94b8c832294f304f5606653809381128262ff0d744a53565b4144ff348e2cf112b74a157e7380d83165b89b0c07e48617
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-