General
-
Target
560a9814fd1f985da446ccb6779503a719e98460134e6adc06452c67e8384442
-
Size
1.0MB
-
Sample
220725-gsfy4shheq
-
MD5
5f38a507e3ed7b9a5f7131c482adf410
-
SHA1
47a5ec01a5aaee35f443a01dc39b572a3a8bd9a4
-
SHA256
560a9814fd1f985da446ccb6779503a719e98460134e6adc06452c67e8384442
-
SHA512
d95ae2c285e803fc97d8bdf094867cdd7db91bcb80ac0248c79ff4e201b662b3b643196f118b78a1b93a841ce25c86bba8cd14bf08a1559980891de7f7d5a1a0
Static task
static1
Behavioral task
behavioral1
Sample
560a9814fd1f985da446ccb6779503a719e98460134e6adc06452c67e8384442.exe
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
560a9814fd1f985da446ccb6779503a719e98460134e6adc06452c67e8384442.exe
Resource
win10v2004-20220722-en
Malware Config
Targets
-
-
Target
560a9814fd1f985da446ccb6779503a719e98460134e6adc06452c67e8384442
-
Size
1.0MB
-
MD5
5f38a507e3ed7b9a5f7131c482adf410
-
SHA1
47a5ec01a5aaee35f443a01dc39b572a3a8bd9a4
-
SHA256
560a9814fd1f985da446ccb6779503a719e98460134e6adc06452c67e8384442
-
SHA512
d95ae2c285e803fc97d8bdf094867cdd7db91bcb80ac0248c79ff4e201b662b3b643196f118b78a1b93a841ce25c86bba8cd14bf08a1559980891de7f7d5a1a0
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-