General
-
Target
67cf9d92ba34b560f348146c8e05729f00d55468ce6c97910f59b246054cf47e
-
Size
147KB
-
Sample
221123-s4smtsda64
-
MD5
630e8d3ba621596560ffbf0633102ba7
-
SHA1
62bb6d36401bf215028ddefb80a10f9f1a102957
-
SHA256
67cf9d92ba34b560f348146c8e05729f00d55468ce6c97910f59b246054cf47e
-
SHA512
663cb02e63facd7e417f218bb12bb0988768f2418c22736ae4b41b591a6828dc695c8f4b880bd3c9f240e05bd5feddf980dd2e1825e2352f403cf1147fea7015
-
SSDEEP
3072:IB7bgimU4VStD9gysbJLulP8R7fzKyjCmBcvSCOBMzkvgoYku22O:Ef4PbJqkR7f5SSpKo1vb
Static task
static1
Behavioral task
behavioral1
Sample
67cf9d92ba34b560f348146c8e05729f00d55468ce6c97910f59b246054cf47e.exe
Resource
win7-20221111-en
Malware Config
Extracted
pony
http://sekkyspamz.favcc1.com/gate.php
-
payload_url
http://sekkyspamz.favcc1.com/shit.exe
Targets
-
-
Target
67cf9d92ba34b560f348146c8e05729f00d55468ce6c97910f59b246054cf47e
-
Size
147KB
-
MD5
630e8d3ba621596560ffbf0633102ba7
-
SHA1
62bb6d36401bf215028ddefb80a10f9f1a102957
-
SHA256
67cf9d92ba34b560f348146c8e05729f00d55468ce6c97910f59b246054cf47e
-
SHA512
663cb02e63facd7e417f218bb12bb0988768f2418c22736ae4b41b591a6828dc695c8f4b880bd3c9f240e05bd5feddf980dd2e1825e2352f403cf1147fea7015
-
SSDEEP
3072:IB7bgimU4VStD9gysbJLulP8R7fzKyjCmBcvSCOBMzkvgoYku22O:Ef4PbJqkR7f5SSpKo1vb
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-