General
-
Target
9484d586c33b3979da18dc26cf169051897a87a1388471435ceac6d88224b87f
-
Size
4.0MB
-
Sample
221003-rpc36aahcp
-
MD5
519fe2f1cee0db767e9867639ee9bda4
-
SHA1
3f54fa972adf0caea22de1a6c3a9dcd39f5dde2a
-
SHA256
9484d586c33b3979da18dc26cf169051897a87a1388471435ceac6d88224b87f
-
SHA512
aa71dc8a7477c6c778f8df57ab38c797e5a2a3b2776a5885a2b836b64da5b4f4b7d425263e4339d6acebd45b5ac72c8185eed44af0d8bce09594ce6eda697e08
-
SSDEEP
98304:kKZS0QGvv4foHCZsF2TV6nPpnSzmHPVch/rYd6hH8VhxJD:9ZXQBf0CaFFIsPK5cd6d8VhxJD
Static task
static1
Malware Config
Targets
-
-
Target
9484d586c33b3979da18dc26cf169051897a87a1388471435ceac6d88224b87f
-
Size
4.0MB
-
MD5
519fe2f1cee0db767e9867639ee9bda4
-
SHA1
3f54fa972adf0caea22de1a6c3a9dcd39f5dde2a
-
SHA256
9484d586c33b3979da18dc26cf169051897a87a1388471435ceac6d88224b87f
-
SHA512
aa71dc8a7477c6c778f8df57ab38c797e5a2a3b2776a5885a2b836b64da5b4f4b7d425263e4339d6acebd45b5ac72c8185eed44af0d8bce09594ce6eda697e08
-
SSDEEP
98304:kKZS0QGvv4foHCZsF2TV6nPpnSzmHPVch/rYd6hH8VhxJD:9ZXQBf0CaFFIsPK5cd6d8VhxJD
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-