General
-
Target
566dd740c63c0be593c4401bd07c98df0be5e0366e42ac616ef35788eceaeaae
-
Size
1.0MB
-
Sample
220725-dxwnkscham
-
MD5
8afe87a876baa47f262dfe5f28e67474
-
SHA1
3e3a9340985b677953f21f47f143c14a410ff385
-
SHA256
566dd740c63c0be593c4401bd07c98df0be5e0366e42ac616ef35788eceaeaae
-
SHA512
b745ebb3aa2d29d24853c1a673d5f36f4996108fbcd68df5d1f2374cee5f497299d583d8d5a47e8785d2675c59a7a19855a7398d21ef03861cecb27bfd23c1ef
Static task
static1
Behavioral task
behavioral1
Sample
566dd740c63c0be593c4401bd07c98df0be5e0366e42ac616ef35788eceaeaae.exe
Resource
win7-20220718-en
Malware Config
Targets
-
-
Target
566dd740c63c0be593c4401bd07c98df0be5e0366e42ac616ef35788eceaeaae
-
Size
1.0MB
-
MD5
8afe87a876baa47f262dfe5f28e67474
-
SHA1
3e3a9340985b677953f21f47f143c14a410ff385
-
SHA256
566dd740c63c0be593c4401bd07c98df0be5e0366e42ac616ef35788eceaeaae
-
SHA512
b745ebb3aa2d29d24853c1a673d5f36f4996108fbcd68df5d1f2374cee5f497299d583d8d5a47e8785d2675c59a7a19855a7398d21ef03861cecb27bfd23c1ef
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-