General
-
Target
cb24722a935c2a07863514e5945f42ab7d0c2f51ad021df5143c712c6a3ab11f
-
Size
4.0MB
-
Sample
221003-1qlalahac2
-
MD5
beb50178ba9ee3be5c4fa7a2754f297f
-
SHA1
fcaa5c6913727cbc0c848ba02a7209b4dac7fddd
-
SHA256
cb24722a935c2a07863514e5945f42ab7d0c2f51ad021df5143c712c6a3ab11f
-
SHA512
c7c92beddc66d5bfd6487d8be5f2469a3bf4ea2e6143d79d04682050c7af8a2e4aaf881621c6c9ae8ec78f268f14632bcac5d915320e4e7843a2cabfc7f43ead
-
SSDEEP
98304:n2ieq3Jy1WjQmV44AY8UIe3TkBOZR25yXuhtHIjstFSn:nkqZy1W1V4JYPIe3DRmKuhtHvEn
Static task
static1
Malware Config
Targets
-
-
Target
cb24722a935c2a07863514e5945f42ab7d0c2f51ad021df5143c712c6a3ab11f
-
Size
4.0MB
-
MD5
beb50178ba9ee3be5c4fa7a2754f297f
-
SHA1
fcaa5c6913727cbc0c848ba02a7209b4dac7fddd
-
SHA256
cb24722a935c2a07863514e5945f42ab7d0c2f51ad021df5143c712c6a3ab11f
-
SHA512
c7c92beddc66d5bfd6487d8be5f2469a3bf4ea2e6143d79d04682050c7af8a2e4aaf881621c6c9ae8ec78f268f14632bcac5d915320e4e7843a2cabfc7f43ead
-
SSDEEP
98304:n2ieq3Jy1WjQmV44AY8UIe3TkBOZR25yXuhtHIjstFSn:nkqZy1W1V4JYPIe3DRmKuhtHvEn
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-