General
-
Target
f2535a77dabc3e795b130dcdfbcb08dac7db07367fa60f61d39e06320f06e2b8
-
Size
12.2MB
-
Sample
221124-ew2zmsgf85
-
MD5
0c8e13fdb28428ca11c770daf4187331
-
SHA1
cdf5848c0a35ce234918b21944d8c94a1f9513e8
-
SHA256
f2535a77dabc3e795b130dcdfbcb08dac7db07367fa60f61d39e06320f06e2b8
-
SHA512
2a79ca7aa7394fc2e32a3731699ee5f251fffeb499cfdf5b3a8a0f53329b9e9a2fe921b7b6fc6b509bff4f9931fbe80970a40d099ab7bcf0ec05d00f3cdacab4
-
SSDEEP
393216:97KNc6GM3k8qu5BycnnPQzx0C0UkwIiKblv:MNclSLn1POiCtXfKblv
Static task
static1
Behavioral task
behavioral1
Sample
f2535a77dabc3e795b130dcdfbcb08dac7db07367fa60f61d39e06320f06e2b8.exe
Resource
win7-20221111-en
Malware Config
Targets
-
-
Target
f2535a77dabc3e795b130dcdfbcb08dac7db07367fa60f61d39e06320f06e2b8
-
Size
12.2MB
-
MD5
0c8e13fdb28428ca11c770daf4187331
-
SHA1
cdf5848c0a35ce234918b21944d8c94a1f9513e8
-
SHA256
f2535a77dabc3e795b130dcdfbcb08dac7db07367fa60f61d39e06320f06e2b8
-
SHA512
2a79ca7aa7394fc2e32a3731699ee5f251fffeb499cfdf5b3a8a0f53329b9e9a2fe921b7b6fc6b509bff4f9931fbe80970a40d099ab7bcf0ec05d00f3cdacab4
-
SSDEEP
393216:97KNc6GM3k8qu5BycnnPQzx0C0UkwIiKblv:MNclSLn1POiCtXfKblv
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-