General
-
Target
a1a3a5aac5afc7f0891dfc47b4d5758abfb92d5f49fb286484a558e3aea9616d
-
Size
1.3MB
-
Sample
220725-dsyx5scffl
-
MD5
c1b3f1fb965bb78b4f20a0468b1faf1a
-
SHA1
f6db4503c82309d2b06781ab28c3ff335d3d7c97
-
SHA256
a1a3a5aac5afc7f0891dfc47b4d5758abfb92d5f49fb286484a558e3aea9616d
-
SHA512
58cb1056e425ef16d2ba90b55f9c67435e7e4bb1b108378d00fb9e76fce1cb41bb5bb512654cff51176ba07b60dcaa3beacd10891e7fd3d855f5d5def53a6917
Static task
static1
Behavioral task
behavioral1
Sample
a1a3a5aac5afc7f0891dfc47b4d5758abfb92d5f49fb286484a558e3aea9616d.exe
Resource
win7-20220718-en
Malware Config
Targets
-
-
Target
a1a3a5aac5afc7f0891dfc47b4d5758abfb92d5f49fb286484a558e3aea9616d
-
Size
1.3MB
-
MD5
c1b3f1fb965bb78b4f20a0468b1faf1a
-
SHA1
f6db4503c82309d2b06781ab28c3ff335d3d7c97
-
SHA256
a1a3a5aac5afc7f0891dfc47b4d5758abfb92d5f49fb286484a558e3aea9616d
-
SHA512
58cb1056e425ef16d2ba90b55f9c67435e7e4bb1b108378d00fb9e76fce1cb41bb5bb512654cff51176ba07b60dcaa3beacd10891e7fd3d855f5d5def53a6917
-
Adds Run key to start application
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-