General
-
Target
6e7067386806391d3a0fa0357c05d06111f20dbd1c978767bbb3b82ea5ddc44f
-
Size
126KB
-
Sample
221124-ewt9ssgf73
-
MD5
ff88ef93eedfd642a5b38ece94fd0003
-
SHA1
29f5faca2e8bd125650cac702090f28d84cf1c95
-
SHA256
6e7067386806391d3a0fa0357c05d06111f20dbd1c978767bbb3b82ea5ddc44f
-
SHA512
d891a4d50a16e334507f161e071e54ebe68888f0e5bf6900cfde6e68a0a0365bfa5702bab08eadb8d9dea342d4c66d7b8a0ed29c03c589d9a9bd9eac830f48e5
-
SSDEEP
3072:em+F9CO29Y5eCPN2bViTpzJP12EFs+NLMXwdxETmrYI:emuCY5e+CVi9yEXlP6iUI
Static task
static1
Behavioral task
behavioral1
Sample
rechnung_vodafone_team_0000399387201_0020398478002_0003_77352_192_0200002.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
rechnung_vodafone_team_0000399387201_0020398478002_0003_77352_192_0200002.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
rechnung_vodafone_team_0000399387201_0020398478002_0003_77352_192_0200002.exe
-
Size
168KB
-
MD5
f914047ba6e8f5bbc2eb67c2bf8336ee
-
SHA1
a90281ee27ac6d692fbc245e0ea688f3f9c860a2
-
SHA256
03baf1186fd318f5ed6ee848201f5f998c873cecaa2ec3313d6d60e17d78f4dd
-
SHA512
46c448718d92e834f410de23485d30848db8246ffd9d79fc5fe9575d7aa1a55cb646803dadeace3a4c891bbc9ba8cb2f46bc26285f6efc5c3a1030ab28502a1a
-
SSDEEP
3072:mdLyZlwEyKcoO29Y5eCPN2bViTphJP12EFs+NLVgu2TVAOWX:4Law7F3CY5e+CVi/yEXlVh2hk
Score7/10-
Deletes itself
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-