General
-
Target
3a14602e987306e49f3edc6374081b0917fb6187e13e5bebd1a4c1909914c869
-
Size
1.9MB
-
Sample
221125-lgjcbabf3x
-
MD5
1c9fcf4701e7b693f447a739036d76b0
-
SHA1
faf5383ff76452a4cd5d82c9043d32792ac751d3
-
SHA256
3a14602e987306e49f3edc6374081b0917fb6187e13e5bebd1a4c1909914c869
-
SHA512
79ac16a21600f9d018b956d379c2c459cacc8514ed5e0ed1acc9762409ab1c0a8e684c4aff95dff8418583479ea4ff2c276fc50ae4e0e8c4983df2eded9fc54f
-
SSDEEP
3072:aSsvihLlTQz9z71iURo2SJJmY6uFNcgifDbmeTXwVdBR:rsqhJMxzJiU5SeLmNSbmebW1
Static task
static1
Behavioral task
behavioral1
Sample
3a14602e987306e49f3edc6374081b0917fb6187e13e5bebd1a4c1909914c869.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
3a14602e987306e49f3edc6374081b0917fb6187e13e5bebd1a4c1909914c869.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
3a14602e987306e49f3edc6374081b0917fb6187e13e5bebd1a4c1909914c869
-
Size
1.9MB
-
MD5
1c9fcf4701e7b693f447a739036d76b0
-
SHA1
faf5383ff76452a4cd5d82c9043d32792ac751d3
-
SHA256
3a14602e987306e49f3edc6374081b0917fb6187e13e5bebd1a4c1909914c869
-
SHA512
79ac16a21600f9d018b956d379c2c459cacc8514ed5e0ed1acc9762409ab1c0a8e684c4aff95dff8418583479ea4ff2c276fc50ae4e0e8c4983df2eded9fc54f
-
SSDEEP
3072:aSsvihLlTQz9z71iURo2SJJmY6uFNcgifDbmeTXwVdBR:rsqhJMxzJiU5SeLmNSbmebW1
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Sets file execution options in registry
-
Loads dropped DLL
-