General
-
Target
88a3fa3ce2a34e3716dd02884281fd7c93a355bac2024cdfdefe083cb4e53cc4
-
Size
4.1MB
-
Sample
221007-3hz5wseabp
-
MD5
0e8cb2c23f0ff88e20fa4bb4c4cd3f7e
-
SHA1
119aab563fc11a225624797cc57b4ab3f3064ffd
-
SHA256
88a3fa3ce2a34e3716dd02884281fd7c93a355bac2024cdfdefe083cb4e53cc4
-
SHA512
61fe611a1d99dc21715d288c2a33f359fb9e3d2a25ee347a6fd4020f00bf6f7002c20f6b5539032b78ab6c3b6b6831ce36a238ab73a0d1aaff43d5b7c9b33f7a
-
SSDEEP
98304:zj67MrRvQMmWLrtMSmf2l/Pi1RlrDs1WutHmRmCpb6vx0diBbfx7DQr:4MrRvQMmctsuaPwJxCJ+0dQbJIr
Static task
static1
Malware Config
Targets
-
-
Target
88a3fa3ce2a34e3716dd02884281fd7c93a355bac2024cdfdefe083cb4e53cc4
-
Size
4.1MB
-
MD5
0e8cb2c23f0ff88e20fa4bb4c4cd3f7e
-
SHA1
119aab563fc11a225624797cc57b4ab3f3064ffd
-
SHA256
88a3fa3ce2a34e3716dd02884281fd7c93a355bac2024cdfdefe083cb4e53cc4
-
SHA512
61fe611a1d99dc21715d288c2a33f359fb9e3d2a25ee347a6fd4020f00bf6f7002c20f6b5539032b78ab6c3b6b6831ce36a238ab73a0d1aaff43d5b7c9b33f7a
-
SSDEEP
98304:zj67MrRvQMmWLrtMSmf2l/Pi1RlrDs1WutHmRmCpb6vx0diBbfx7DQr:4MrRvQMmctsuaPwJxCJ+0dQbJIr
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-