General
-
Target
c343790e1a3a1cea36f04f44b2d6562852abfb800bac8480cbdf23d8274e5efb
-
Size
4.0MB
-
Sample
220828-1bkqhsgad4
-
MD5
1f26dd51dbfae86167077e9d605684d1
-
SHA1
61a94d58ecb9a37735618985a80a4a11505d0da1
-
SHA256
c343790e1a3a1cea36f04f44b2d6562852abfb800bac8480cbdf23d8274e5efb
-
SHA512
fcdfea8756390302ca7348729f5620d2c3285ee22ea7393a3d09b3c7324766a370a9b6a83c522025fa99b863b0fde9117851b1a49e3126ac821e16758774d585
-
SSDEEP
98304:UHvHk9S91JQH74MQR9KhXTnfQub4GSeelqHpXfsWXwpP:QQS91mHdQzO4KSepU5P
Static task
static1
Malware Config
Targets
-
-
Target
c343790e1a3a1cea36f04f44b2d6562852abfb800bac8480cbdf23d8274e5efb
-
Size
4.0MB
-
MD5
1f26dd51dbfae86167077e9d605684d1
-
SHA1
61a94d58ecb9a37735618985a80a4a11505d0da1
-
SHA256
c343790e1a3a1cea36f04f44b2d6562852abfb800bac8480cbdf23d8274e5efb
-
SHA512
fcdfea8756390302ca7348729f5620d2c3285ee22ea7393a3d09b3c7324766a370a9b6a83c522025fa99b863b0fde9117851b1a49e3126ac821e16758774d585
-
SSDEEP
98304:UHvHk9S91JQH74MQR9KhXTnfQub4GSeelqHpXfsWXwpP:QQS91mHdQzO4KSepU5P
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-