General
-
Target
SecuriteInfo.com.Trojan.GenericKD.62209758.18306.19178.exe
-
Size
72KB
-
Sample
220925-mh8h9sfefm
-
MD5
e0770f68d015a398c13d8918a6751aa3
-
SHA1
7d7874784b9a2fe223531bac40d400e1d5bf8f8f
-
SHA256
caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6
-
SHA512
6555e264fd66f551f285a67e8383c4552e0be54442f619870fc79447a42cd4da4b9313811683a74c46d969bb2b668936045d68f16f4ed58cd7eba2106cb49b39
-
SSDEEP
1536:qFiusdglLI8cH+9g0FDDZtFMfav7V5F5erqjzssdQLXKvhCj18n:qsusdBBH+9g4mC7V5F5/zssdhsJ8n
Malware Config
Targets
-
-
Target
SecuriteInfo.com.Trojan.GenericKD.62209758.18306.19178.exe
-
Size
72KB
-
MD5
e0770f68d015a398c13d8918a6751aa3
-
SHA1
7d7874784b9a2fe223531bac40d400e1d5bf8f8f
-
SHA256
caa701aea3a9754d8821d1639935df8574f63f9a80ec76691d064399c1543dc6
-
SHA512
6555e264fd66f551f285a67e8383c4552e0be54442f619870fc79447a42cd4da4b9313811683a74c46d969bb2b668936045d68f16f4ed58cd7eba2106cb49b39
-
SSDEEP
1536:qFiusdglLI8cH+9g0FDDZtFMfav7V5F5erqjzssdQLXKvhCj18n:qsusdBBH+9g4mC7V5F5/zssdhsJ8n
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Downloads MZ/PE file
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Adds Run key to start application
-