General
-
Target
521f1427e5905de3694213d1ceb8daefb1da9d1eb8e186895c17bff9271e2f81
-
Size
271KB
-
Sample
221125-lancpabb9w
-
MD5
e8d3f1d4567b2f01eb55a21b68396219
-
SHA1
a7189a5028ca89b0d6ddaba49c777a3f39af47ee
-
SHA256
521f1427e5905de3694213d1ceb8daefb1da9d1eb8e186895c17bff9271e2f81
-
SHA512
9bff54120573e779efa2a4d0d6c146ff0becd7e579a9733c01bfa1c0bcb4d5f0e00e4a87efd0f7a5b6ee038c4e21aa19daf0a22a7a214eaaf33e6a4956168b13
-
SSDEEP
3072:dSsvihLlTQz9z71iURo2SJJmY6uFNcgifDbMtJyVdyw:ssqhJMxzJiU5SeLmNSbMtJU5
Static task
static1
Behavioral task
behavioral1
Sample
521f1427e5905de3694213d1ceb8daefb1da9d1eb8e186895c17bff9271e2f81.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
521f1427e5905de3694213d1ceb8daefb1da9d1eb8e186895c17bff9271e2f81.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
521f1427e5905de3694213d1ceb8daefb1da9d1eb8e186895c17bff9271e2f81
-
Size
271KB
-
MD5
e8d3f1d4567b2f01eb55a21b68396219
-
SHA1
a7189a5028ca89b0d6ddaba49c777a3f39af47ee
-
SHA256
521f1427e5905de3694213d1ceb8daefb1da9d1eb8e186895c17bff9271e2f81
-
SHA512
9bff54120573e779efa2a4d0d6c146ff0becd7e579a9733c01bfa1c0bcb4d5f0e00e4a87efd0f7a5b6ee038c4e21aa19daf0a22a7a214eaaf33e6a4956168b13
-
SSDEEP
3072:dSsvihLlTQz9z71iURo2SJJmY6uFNcgifDbMtJyVdyw:ssqhJMxzJiU5SeLmNSbMtJU5
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Sets file execution options in registry
-
Loads dropped DLL
-