General
-
Target
9543019093bc022b4e5151e4d829357d706a20f3797fddee1a683ddbb3063aad
-
Size
2.7MB
-
Sample
221125-h9jxrsed3t
-
MD5
25543861ba274d232c398bc842057def
-
SHA1
72fead8c6e44aade2f1f7df53a59d2258bdbc3d7
-
SHA256
9543019093bc022b4e5151e4d829357d706a20f3797fddee1a683ddbb3063aad
-
SHA512
03ae0f679a3258eb07b8e888b34eac04522fbc8cd11f5ffbee140748ac0d1e041d6b5f605c7a5a876c4e0412620285c37189ad45636cf9dbf5a899c92c948ad2
-
SSDEEP
49152:1b2JAKeNCqs5pTNkRLq7J7EzlbCFKmoeBbUkoqypczICPk:1bIAKeNCrtkFMJ7glbqIeBbUZHC
Static task
static1
Behavioral task
behavioral1
Sample
9543019093bc022b4e5151e4d829357d706a20f3797fddee1a683ddbb3063aad.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9543019093bc022b4e5151e4d829357d706a20f3797fddee1a683ddbb3063aad.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
http://galaint.releaseinfoupdate.pl/?0=126&1=2&2=1&3=118&4=i&5=7601&6=6&7=1&8=99600&9=1033&10=0&11=1111&12=ybpkowbwqh&14=1
Targets
-
-
Target
9543019093bc022b4e5151e4d829357d706a20f3797fddee1a683ddbb3063aad
-
Size
2.7MB
-
MD5
25543861ba274d232c398bc842057def
-
SHA1
72fead8c6e44aade2f1f7df53a59d2258bdbc3d7
-
SHA256
9543019093bc022b4e5151e4d829357d706a20f3797fddee1a683ddbb3063aad
-
SHA512
03ae0f679a3258eb07b8e888b34eac04522fbc8cd11f5ffbee140748ac0d1e041d6b5f605c7a5a876c4e0412620285c37189ad45636cf9dbf5a899c92c948ad2
-
SSDEEP
49152:1b2JAKeNCqs5pTNkRLq7J7EzlbCFKmoeBbUkoqypczICPk:1bIAKeNCrtkFMJ7glbqIeBbUZHC
Score10/10-
Disables taskbar notifications via registry modification
-
Executes dropped EXE
-
Sets file execution options in registry
-
Stops running service(s)
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-