General
-
Target
1ca6c48ad8066465d84915ddd523ee75b1b4cec70d8e81ccc48dc87c3a3f31e0
-
Size
4.3MB
-
Sample
220823-16rgjsccaq
-
MD5
c22d42b7d053ce1696877f438adb5602
-
SHA1
db0ec9edf50a1a23b2642702f97e616ad348b6e7
-
SHA256
1ca6c48ad8066465d84915ddd523ee75b1b4cec70d8e81ccc48dc87c3a3f31e0
-
SHA512
33671ddaee2a4ef7b8a6aed01e4c8e82ac212e03b9551556d83c23753467435c08b696f186ace53e1b7ea0aebbcfb1b0503cedcf1643b9a593d4e378f5d554e3
-
SSDEEP
98304:jUXaYTfFFnu748ha1yKdWv0ZNJlIt/QFmfM74eWQ3S3eimyQIyeL2jxp6037/QD:4hTfFFu74xyKdQ+NJxYfVeWQ3xIyYUxq
Static task
static1
Behavioral task
behavioral1
Sample
1ca6c48ad8066465d84915ddd523ee75b1b4cec70d8e81ccc48dc87c3a3f31e0.exe
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
1ca6c48ad8066465d84915ddd523ee75b1b4cec70d8e81ccc48dc87c3a3f31e0
-
Size
4.3MB
-
MD5
c22d42b7d053ce1696877f438adb5602
-
SHA1
db0ec9edf50a1a23b2642702f97e616ad348b6e7
-
SHA256
1ca6c48ad8066465d84915ddd523ee75b1b4cec70d8e81ccc48dc87c3a3f31e0
-
SHA512
33671ddaee2a4ef7b8a6aed01e4c8e82ac212e03b9551556d83c23753467435c08b696f186ace53e1b7ea0aebbcfb1b0503cedcf1643b9a593d4e378f5d554e3
-
SSDEEP
98304:jUXaYTfFFnu748ha1yKdWv0ZNJlIt/QFmfM74eWQ3S3eimyQIyeL2jxp6037/QD:4hTfFFu74xyKdQ+NJxYfVeWQ3xIyYUxq
-
Modifies security service
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Possible privilege escalation attempt
-
Stops running service(s)
-
Deletes itself
-
Loads dropped DLL
-
Modifies file permissions
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-