General
-
Target
eb35c000eeb1d368e452a6eef6c1d162b998228f41e4691c70ae97601e8e6442
-
Size
153KB
-
Sample
221125-hmk7bahc37
-
MD5
1ab10ddce57c830b60a61c2890479e14
-
SHA1
2c72ed4cdb1be02d0d066b00093a6bab8f61daca
-
SHA256
eb35c000eeb1d368e452a6eef6c1d162b998228f41e4691c70ae97601e8e6442
-
SHA512
8c79da45c53e3346ae5052b573ef47fa6fdcb875acd1a801269b9102fb3fe761d929356e74bb33bc0ef1e3499207ee7738766a56e92eaae9410c1274c83b4ac7
-
SSDEEP
3072:sYitMoL4KcNSN8VbOyW/EXU/4dr7Okmf4SiNPg1f:sH3L4KQE/A7V6
Static task
static1
Behavioral task
behavioral1
Sample
eb35c000eeb1d368e452a6eef6c1d162b998228f41e4691c70ae97601e8e6442.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
eb35c000eeb1d368e452a6eef6c1d162b998228f41e4691c70ae97601e8e6442.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
eb35c000eeb1d368e452a6eef6c1d162b998228f41e4691c70ae97601e8e6442
-
Size
153KB
-
MD5
1ab10ddce57c830b60a61c2890479e14
-
SHA1
2c72ed4cdb1be02d0d066b00093a6bab8f61daca
-
SHA256
eb35c000eeb1d368e452a6eef6c1d162b998228f41e4691c70ae97601e8e6442
-
SHA512
8c79da45c53e3346ae5052b573ef47fa6fdcb875acd1a801269b9102fb3fe761d929356e74bb33bc0ef1e3499207ee7738766a56e92eaae9410c1274c83b4ac7
-
SSDEEP
3072:sYitMoL4KcNSN8VbOyW/EXU/4dr7Okmf4SiNPg1f:sH3L4KQE/A7V6
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Blocklisted process makes network request
-
Disables taskbar notifications via registry modification
-
Suspicious use of SetThreadContext
-