General
-
Target
MyMXE.exe
-
Size
3.8MB
-
Sample
220810-nc5qvshefm
-
MD5
0145183162d6e88d69a427968845e789
-
SHA1
b706f144c557fb0f47df51f4b826a9991c6c1833
-
SHA256
59bb48f0b7c22078a26b576626ec46e25f0b210588fa76a7346bef6c7063b3db
-
SHA512
83473e3b4dc0e63ddc674e545515de15feca324674672aeee892ba31a224fd2d8fa255d9ac9a2bf04a4571d08ceed83c428dba75f48c84bbd674a96c8adadb6b
Behavioral task
behavioral1
Sample
MyMXE.exe
Resource
win7-20220715-en
Behavioral task
behavioral2
Sample
MyMXE.exe
Resource
win10v2004-20220722-en
Malware Config
Extracted
bitrat
1.38
eichelberger.duckdns.org:7744
-
communication_password
2eb6e59fac395f7cb5a7b52ea31fa9f2
-
tor_process
tor
Targets
-
-
Target
MyMXE.exe
-
Size
3.8MB
-
MD5
0145183162d6e88d69a427968845e789
-
SHA1
b706f144c557fb0f47df51f4b826a9991c6c1833
-
SHA256
59bb48f0b7c22078a26b576626ec46e25f0b210588fa76a7346bef6c7063b3db
-
SHA512
83473e3b4dc0e63ddc674e545515de15feca324674672aeee892ba31a224fd2d8fa255d9ac9a2bf04a4571d08ceed83c428dba75f48c84bbd674a96c8adadb6b
Score5/10-
Suspicious use of NtSetInformationThreadHideFromDebugger
-