General
-
Target
bed9d76665adf85215330eaea2a50ce39f4f653b5b07909e0b698dcb55cccee6
-
Size
113KB
-
Sample
221108-1pkbxaade9
-
MD5
03332ba2465df1db2e96ed519017f0b0
-
SHA1
82afb4d5729f750aa66ba94181c2e4b0ab2f0152
-
SHA256
bed9d76665adf85215330eaea2a50ce39f4f653b5b07909e0b698dcb55cccee6
-
SHA512
9dad1df1e15c454785ad8308b11d68e5e5cd35fd7772023934f191c26c906fdecf0bf6b9c9d9970ffb477f313cfab33765485274fc6f7b1b6a085550d2f21c80
-
SSDEEP
3072:Uu5G5msOMTTnyQyqLZtM1DnywMp+RCjH:xGwsOMHyQyeZtEnKpwCj
Static task
static1
Behavioral task
behavioral1
Sample
bed9d76665adf85215330eaea2a50ce39f4f653b5b07909e0b698dcb55cccee6.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
bed9d76665adf85215330eaea2a50ce39f4f653b5b07909e0b698dcb55cccee6.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
pony
http://reebie.net/forum/viewtopic.php
http://storageandmoving.net/forum/viewtopic.php
http://storeyourbox.com/forum/viewtopic.php
http://storeyourbox.net/forum/viewtopic.php
-
payload_url
http://agapidis.gr/8Zg.exe
http://www.atorka.de/iREuALTW.exe
http://repro2go.com/KJs0.exe
Targets
-
-
Target
bed9d76665adf85215330eaea2a50ce39f4f653b5b07909e0b698dcb55cccee6
-
Size
113KB
-
MD5
03332ba2465df1db2e96ed519017f0b0
-
SHA1
82afb4d5729f750aa66ba94181c2e4b0ab2f0152
-
SHA256
bed9d76665adf85215330eaea2a50ce39f4f653b5b07909e0b698dcb55cccee6
-
SHA512
9dad1df1e15c454785ad8308b11d68e5e5cd35fd7772023934f191c26c906fdecf0bf6b9c9d9970ffb477f313cfab33765485274fc6f7b1b6a085550d2f21c80
-
SSDEEP
3072:Uu5G5msOMTTnyQyqLZtM1DnywMp+RCjH:xGwsOMHyQyeZtEnKpwCj
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-