General
-
Target
560e53b5e77b396efea3a2c88a616df781998ca549dc9e8c51b8cfce658e3249
-
Size
1.0MB
-
Sample
220725-gqtr7ahghj
-
MD5
4d7bb3485cc81e5560ff41c818afe253
-
SHA1
bd80a7ed65f94aa6fb409b954a867e46c1c461c5
-
SHA256
560e53b5e77b396efea3a2c88a616df781998ca549dc9e8c51b8cfce658e3249
-
SHA512
5a9c98e3faa94cba4076bb0e66d2524200864179d734b50b37fe40e0a0c9101442745bd697d42b7196e584fc394ca15d0b31b2011b8473beacb85d386922972d
Static task
static1
Behavioral task
behavioral1
Sample
560e53b5e77b396efea3a2c88a616df781998ca549dc9e8c51b8cfce658e3249.exe
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
560e53b5e77b396efea3a2c88a616df781998ca549dc9e8c51b8cfce658e3249.exe
Resource
win10v2004-20220721-en
Malware Config
Targets
-
-
Target
560e53b5e77b396efea3a2c88a616df781998ca549dc9e8c51b8cfce658e3249
-
Size
1.0MB
-
MD5
4d7bb3485cc81e5560ff41c818afe253
-
SHA1
bd80a7ed65f94aa6fb409b954a867e46c1c461c5
-
SHA256
560e53b5e77b396efea3a2c88a616df781998ca549dc9e8c51b8cfce658e3249
-
SHA512
5a9c98e3faa94cba4076bb0e66d2524200864179d734b50b37fe40e0a0c9101442745bd697d42b7196e584fc394ca15d0b31b2011b8473beacb85d386922972d
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-