General
-
Target
Fluxo de Caixa.exe
-
Size
371KB
-
Sample
221004-qaxnksbac2
-
MD5
01b936cf783fe182a628c65e70dfebd9
-
SHA1
273ca25fc53e1e07aa2e398bb5850c1c75863bc5
-
SHA256
9d3a6225b5afb12815d37e34f88cf8d33d366c401bb53ae23a75599361e33bde
-
SHA512
dd3134c70d933ff9dffc280d2992776776b5e257846884dacd6fbb077a455ebeb5158e27da6b5dd0c0083d82f3c5399abb6e7a6da91daeff4f73d0b7cb148bc3
-
SSDEEP
6144:lTouKrWBEu3/Z2lpGDHU3ykJ1tC/a02zubNdw0I:lToPWBv/cpGrU3y8tGgubNd6
Static task
static1
Behavioral task
behavioral1
Sample
Fluxo de Caixa.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
Fluxo de Caixa.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
Fluxo de Caixa.exe
-
Size
371KB
-
MD5
01b936cf783fe182a628c65e70dfebd9
-
SHA1
273ca25fc53e1e07aa2e398bb5850c1c75863bc5
-
SHA256
9d3a6225b5afb12815d37e34f88cf8d33d366c401bb53ae23a75599361e33bde
-
SHA512
dd3134c70d933ff9dffc280d2992776776b5e257846884dacd6fbb077a455ebeb5158e27da6b5dd0c0083d82f3c5399abb6e7a6da91daeff4f73d0b7cb148bc3
-
SSDEEP
6144:lTouKrWBEu3/Z2lpGDHU3ykJ1tC/a02zubNdw0I:lToPWBv/cpGrU3y8tGgubNd6
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-