General
-
Target
56763b321e43b5649cbfad8baee555713aff58ba8240da3d2ecfc09e071a63cb
-
Size
3.2MB
-
Sample
221125-vf5nlaeh51
-
MD5
470b3e3845a05a1cecf1c15edd97320c
-
SHA1
ef782b102d913bf9f9bb54d8b43a3aaf5d66780d
-
SHA256
56763b321e43b5649cbfad8baee555713aff58ba8240da3d2ecfc09e071a63cb
-
SHA512
79d7ef605b239d2f0ecf25ed45e3f6ec096d183fc8b9c927d4625e96eaad6f09ad773c88c6e9662244e60e5735367af38ed419fc72f554a243c14e32d3584f56
-
SSDEEP
98304:6g56dHhUevqnFDXnUOh/5y14LUyGAeXevR:B5oHh+X9hhy18GAOevR
Static task
static1
Behavioral task
behavioral1
Sample
56763b321e43b5649cbfad8baee555713aff58ba8240da3d2ecfc09e071a63cb.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
56763b321e43b5649cbfad8baee555713aff58ba8240da3d2ecfc09e071a63cb.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
56763b321e43b5649cbfad8baee555713aff58ba8240da3d2ecfc09e071a63cb
-
Size
3.2MB
-
MD5
470b3e3845a05a1cecf1c15edd97320c
-
SHA1
ef782b102d913bf9f9bb54d8b43a3aaf5d66780d
-
SHA256
56763b321e43b5649cbfad8baee555713aff58ba8240da3d2ecfc09e071a63cb
-
SHA512
79d7ef605b239d2f0ecf25ed45e3f6ec096d183fc8b9c927d4625e96eaad6f09ad773c88c6e9662244e60e5735367af38ed419fc72f554a243c14e32d3584f56
-
SSDEEP
98304:6g56dHhUevqnFDXnUOh/5y14LUyGAeXevR:B5oHh+X9hhy18GAOevR
Score6/10-
Accesses Microsoft Outlook profiles
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-