General
-
Target
a2e63e06e32f7e44e2bd83150a59f466577c8d2fa9e1112743dde36a4449427b
-
Size
4.1MB
-
Sample
220919-qa6lgsaad8
-
MD5
2c01bda87ccebd24775c9778b1093653
-
SHA1
66e607bc70716d15da2714dfbef451e308870917
-
SHA256
a2e63e06e32f7e44e2bd83150a59f466577c8d2fa9e1112743dde36a4449427b
-
SHA512
4cb7b2c2f8d0810687807f9ee730fb15eae8d9a887c5b8970638c07d8c5e02a00d93e826c05261b7d6ddfa5d708d0feebe2971d9d6557e95899821c06fcd6dea
-
SSDEEP
98304:gMLE7uGhFPeBgUwS91xGovo2RufqOk1a5NEcHvO2dCQBbBx:4FPeWK9fGogwV1T2YoFx
Static task
static1
Malware Config
Targets
-
-
Target
a2e63e06e32f7e44e2bd83150a59f466577c8d2fa9e1112743dde36a4449427b
-
Size
4.1MB
-
MD5
2c01bda87ccebd24775c9778b1093653
-
SHA1
66e607bc70716d15da2714dfbef451e308870917
-
SHA256
a2e63e06e32f7e44e2bd83150a59f466577c8d2fa9e1112743dde36a4449427b
-
SHA512
4cb7b2c2f8d0810687807f9ee730fb15eae8d9a887c5b8970638c07d8c5e02a00d93e826c05261b7d6ddfa5d708d0feebe2971d9d6557e95899821c06fcd6dea
-
SSDEEP
98304:gMLE7uGhFPeBgUwS91xGovo2RufqOk1a5NEcHvO2dCQBbBx:4FPeWK9fGogwV1T2YoFx
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-