General
-
Target
519c5ce5aaedf029cd10b0e70a08eaf817cdfbaf1cf420e8ef9e14f4671b72bd.exe
-
Size
11.6MB
-
Sample
220804-mx2z2aeab5
-
MD5
ca48c2a5c3d617e0538e0baadaa23bc7
-
SHA1
42936532aa66b923d389a496352e7494bdd8ba23
-
SHA256
519c5ce5aaedf029cd10b0e70a08eaf817cdfbaf1cf420e8ef9e14f4671b72bd
-
SHA512
79966f4ee83d1f2ffaaaffe2590375ea26c5ef1c42bbae50727ddf561d98a0d2928fb332ae568fec02da3140f17b1a6f1e1ca77cdc4ae0fd8d1bd663bc0afefe
Static task
static1
Behavioral task
behavioral1
Sample
519c5ce5aaedf029cd10b0e70a08eaf817cdfbaf1cf420e8ef9e14f4671b72bd.exe
Resource
win10-20220414-en
Malware Config
Extracted
tofsee
mubrikych.top
oxxyfix.xyz
Targets
-
-
Target
519c5ce5aaedf029cd10b0e70a08eaf817cdfbaf1cf420e8ef9e14f4671b72bd.exe
-
Size
11.6MB
-
MD5
ca48c2a5c3d617e0538e0baadaa23bc7
-
SHA1
42936532aa66b923d389a496352e7494bdd8ba23
-
SHA256
519c5ce5aaedf029cd10b0e70a08eaf817cdfbaf1cf420e8ef9e14f4671b72bd
-
SHA512
79966f4ee83d1f2ffaaaffe2590375ea26c5ef1c42bbae50727ddf561d98a0d2928fb332ae568fec02da3140f17b1a6f1e1ca77cdc4ae0fd8d1bd663bc0afefe
Score10/10-
Creates new service(s)
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Sets service image path in registry
-
Deletes itself
-
Suspicious use of SetThreadContext
-