General
-
Target
af63cae36e18e2f5aaabaa8e9f31ace039059d4853cf14cae6694099ee513d9d
-
Size
583KB
-
Sample
221124-zjec2ahb25
-
MD5
3ed425ec45a4098df4bb68b8dacfe963
-
SHA1
2b2261e7b9efc30f2d3e7c69fe7011309f478ade
-
SHA256
af63cae36e18e2f5aaabaa8e9f31ace039059d4853cf14cae6694099ee513d9d
-
SHA512
a51f83a98ebd7ce01b6af3f241cc91d9b832c676001eec6e1a5d8958a05d8d393a80a329b91e044f530fe7b5dd7cb3c9c5b223a083110fedf3deea2d7ac35abd
-
SSDEEP
12288:ff3V1zIQ0XoeZCMT7ar16I5/elWQ96y1uKsQk84Bqj6deP7H:ffVKVXozM6xvJK96y1YVcPT
Static task
static1
Behavioral task
behavioral1
Sample
af63cae36e18e2f5aaabaa8e9f31ace039059d4853cf14cae6694099ee513d9d.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
af63cae36e18e2f5aaabaa8e9f31ace039059d4853cf14cae6694099ee513d9d.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
af63cae36e18e2f5aaabaa8e9f31ace039059d4853cf14cae6694099ee513d9d
-
Size
583KB
-
MD5
3ed425ec45a4098df4bb68b8dacfe963
-
SHA1
2b2261e7b9efc30f2d3e7c69fe7011309f478ade
-
SHA256
af63cae36e18e2f5aaabaa8e9f31ace039059d4853cf14cae6694099ee513d9d
-
SHA512
a51f83a98ebd7ce01b6af3f241cc91d9b832c676001eec6e1a5d8958a05d8d393a80a329b91e044f530fe7b5dd7cb3c9c5b223a083110fedf3deea2d7ac35abd
-
SSDEEP
12288:ff3V1zIQ0XoeZCMT7ar16I5/elWQ96y1uKsQk84Bqj6deP7H:ffVKVXozM6xvJK96y1YVcPT
Score10/10-
Modifies firewall policy service
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-