General
-
Target
27feec2b751a6997e831c7c3b9f07a8a0e5fadcd03487860f51561fff84f43ef
-
Size
4.1MB
-
Sample
221007-v1xtgsdber
-
MD5
39f357056e9924156dd954462541648d
-
SHA1
b3e632f31483880ea767792da9b24723ead3f7c8
-
SHA256
27feec2b751a6997e831c7c3b9f07a8a0e5fadcd03487860f51561fff84f43ef
-
SHA512
af8f1d1f2937e77e7d5a0f219da8be2719ef7c85e4f341be2797297a8f729281cac4ff770f5f643b754aa81a2b54cd6b00af674223d555241be10b5d56be5e9f
-
SSDEEP
98304:WOrqhyRXxhv/vLOJ7CrNYiwvthppT+NAlFfK5J1orq6ZgK8E:/rqh6xlva7GnwvtX96Oij14q6uw
Static task
static1
Malware Config
Targets
-
-
Target
27feec2b751a6997e831c7c3b9f07a8a0e5fadcd03487860f51561fff84f43ef
-
Size
4.1MB
-
MD5
39f357056e9924156dd954462541648d
-
SHA1
b3e632f31483880ea767792da9b24723ead3f7c8
-
SHA256
27feec2b751a6997e831c7c3b9f07a8a0e5fadcd03487860f51561fff84f43ef
-
SHA512
af8f1d1f2937e77e7d5a0f219da8be2719ef7c85e4f341be2797297a8f729281cac4ff770f5f643b754aa81a2b54cd6b00af674223d555241be10b5d56be5e9f
-
SSDEEP
98304:WOrqhyRXxhv/vLOJ7CrNYiwvthppT+NAlFfK5J1orq6ZgK8E:/rqh6xlva7GnwvtX96Oij14q6uw
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-