General
-
Target
dab506a7bd9b23d19d0734ed8300d3bbde9ecd1dac3355113ed58e102be679cc
-
Size
4.1MB
-
Sample
220917-kky2hadddl
-
MD5
09f058688cc222d0428b4fbc946500b4
-
SHA1
c2add740c6f40be583ed2d9f1d5566cdc725e386
-
SHA256
dab506a7bd9b23d19d0734ed8300d3bbde9ecd1dac3355113ed58e102be679cc
-
SHA512
09099afe3746b7e98dadfc96ec1a43f9d9f0abd6e5de9e61220f7afa4c128e0444d53523033bc177987faddbf31f6e70d394192b783cc262cff058c99ea73107
-
SSDEEP
98304:GC7QeGahPp4z52DMDv1zBeocsVIHG+kwbsoGH8tS0tSdPgRwE:HtGCPa1WIBe/AUbsoM8w0tS9zE
Static task
static1
Malware Config
Targets
-
-
Target
dab506a7bd9b23d19d0734ed8300d3bbde9ecd1dac3355113ed58e102be679cc
-
Size
4.1MB
-
MD5
09f058688cc222d0428b4fbc946500b4
-
SHA1
c2add740c6f40be583ed2d9f1d5566cdc725e386
-
SHA256
dab506a7bd9b23d19d0734ed8300d3bbde9ecd1dac3355113ed58e102be679cc
-
SHA512
09099afe3746b7e98dadfc96ec1a43f9d9f0abd6e5de9e61220f7afa4c128e0444d53523033bc177987faddbf31f6e70d394192b783cc262cff058c99ea73107
-
SSDEEP
98304:GC7QeGahPp4z52DMDv1zBeocsVIHG+kwbsoGH8tS0tSdPgRwE:HtGCPa1WIBe/AUbsoM8w0tS9zE
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-