General
-
Target
9b4a17bb43644b40651948c85c766625fc850789690a94a582f72594c44766d3.exe
-
Size
5.0MB
-
Sample
221011-ejhegadec7
-
MD5
2fca5b13e15f025de261853c65969e2e
-
SHA1
ba989508bb7621478aa835eb6222ab5cebf5419f
-
SHA256
9b4a17bb43644b40651948c85c766625fc850789690a94a582f72594c44766d3
-
SHA512
62a0cf391a8b76deb64572c51dc894ae9fbb67c88a19aa55f8bdef973c86dcba4fa626659f6b3597b17169ea1ac5dc227490c0f8ae5a5005b4d3fcb7a750f019
-
SSDEEP
6144:GE9l9yUqIYVTH5DgSg8ajldktM0XXrP2QhMV9qbB:GvbLgPlu+QhMb
Static task
static1
Behavioral task
behavioral1
Sample
9b4a17bb43644b40651948c85c766625fc850789690a94a582f72594c44766d3.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
9b4a17bb43644b40651948c85c766625fc850789690a94a582f72594c44766d3.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
9b4a17bb43644b40651948c85c766625fc850789690a94a582f72594c44766d3.exe
-
Size
5.0MB
-
MD5
2fca5b13e15f025de261853c65969e2e
-
SHA1
ba989508bb7621478aa835eb6222ab5cebf5419f
-
SHA256
9b4a17bb43644b40651948c85c766625fc850789690a94a582f72594c44766d3
-
SHA512
62a0cf391a8b76deb64572c51dc894ae9fbb67c88a19aa55f8bdef973c86dcba4fa626659f6b3597b17169ea1ac5dc227490c0f8ae5a5005b4d3fcb7a750f019
-
SSDEEP
6144:GE9l9yUqIYVTH5DgSg8ajldktM0XXrP2QhMV9qbB:GvbLgPlu+QhMb
Score10/10-
Contacts a large (2617) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Contacts a large (1003) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-