General
-
Target
fb54fb0923bdd2eab423511171594f00e111895a2569ff98079e264ba8ef5802
-
Size
1.3MB
-
Sample
220725-fkrj7sffgp
-
MD5
f41ac3c9d7cac6153c6687fe0b160dc9
-
SHA1
c7368bb2435f0dca25a39fe11ca1df1be9dbef6c
-
SHA256
fb54fb0923bdd2eab423511171594f00e111895a2569ff98079e264ba8ef5802
-
SHA512
40d7605ec4244a702893ed926b5e4eeef41052fa06ffd5c753bf06b03c171dcd6929a58d2336f47ac4b5def49221c811748f8b9962896ed900141ddda595bc8d
Static task
static1
Behavioral task
behavioral1
Sample
fb54fb0923bdd2eab423511171594f00e111895a2569ff98079e264ba8ef5802.exe
Resource
win7-20220718-en
Malware Config
Targets
-
-
Target
fb54fb0923bdd2eab423511171594f00e111895a2569ff98079e264ba8ef5802
-
Size
1.3MB
-
MD5
f41ac3c9d7cac6153c6687fe0b160dc9
-
SHA1
c7368bb2435f0dca25a39fe11ca1df1be9dbef6c
-
SHA256
fb54fb0923bdd2eab423511171594f00e111895a2569ff98079e264ba8ef5802
-
SHA512
40d7605ec4244a702893ed926b5e4eeef41052fa06ffd5c753bf06b03c171dcd6929a58d2336f47ac4b5def49221c811748f8b9962896ed900141ddda595bc8d
-
Adds Run key to start application
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-