General
-
Target
c573188faab87ae66ba854cab51a41b506b5c39059fa51b5c323c12d2094d74e
-
Size
603KB
-
Sample
221124-x9bnqaeb83
-
MD5
5cf013ef70882cc594ff447051499bf2
-
SHA1
e1b94c03b9c62e8a4418987578c91d78bd18aa3e
-
SHA256
c573188faab87ae66ba854cab51a41b506b5c39059fa51b5c323c12d2094d74e
-
SHA512
9094bae226eedf742a573196f7a88ea6dfe93082f44147ec48b7f18b37cbb2f0b605ec9770ed6b3f00032ea63e9f821d6e3d7214a4223a72e45119a28f62b052
-
SSDEEP
12288:aB1xhXJxtxC5E5oPmGUgzO6xWVbVkjZmf:anzvTC5D+GIbVJf
Static task
static1
Behavioral task
behavioral1
Sample
c573188faab87ae66ba854cab51a41b506b5c39059fa51b5c323c12d2094d74e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
c573188faab87ae66ba854cab51a41b506b5c39059fa51b5c323c12d2094d74e.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
c573188faab87ae66ba854cab51a41b506b5c39059fa51b5c323c12d2094d74e
-
Size
603KB
-
MD5
5cf013ef70882cc594ff447051499bf2
-
SHA1
e1b94c03b9c62e8a4418987578c91d78bd18aa3e
-
SHA256
c573188faab87ae66ba854cab51a41b506b5c39059fa51b5c323c12d2094d74e
-
SHA512
9094bae226eedf742a573196f7a88ea6dfe93082f44147ec48b7f18b37cbb2f0b605ec9770ed6b3f00032ea63e9f821d6e3d7214a4223a72e45119a28f62b052
-
SSDEEP
12288:aB1xhXJxtxC5E5oPmGUgzO6xWVbVkjZmf:anzvTC5D+GIbVJf
Score10/10-
Modifies firewall policy service
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-