General
-
Target
d610f4481d4596a1925d9a3a1676662c2ed064b0c75a34cd725cee2e092445c8
-
Size
702KB
-
Sample
221126-hkqc9aab46
-
MD5
f8b26df426b46725c7eac85e9af2d244
-
SHA1
951846ffd61af16a393dd0ca507bb8d0e4fe5be1
-
SHA256
d610f4481d4596a1925d9a3a1676662c2ed064b0c75a34cd725cee2e092445c8
-
SHA512
1bcc8c4c5b452c7c6fb24b1e76b73c456532429c6bdfa422b73b67a52e604cbca4633b72118354a3d407f3c68321b8777e1949f796091050e8500d642403f7fd
-
SSDEEP
12288:wccMkAibbP0HM2Tpcxl7Fki5YUBI4z86wlhJKeO6F6NDeaGRwf1jByWqCKeaNhe8:IVAugHM2eRrHBI4zg9OUmBZqTBuyf9
Static task
static1
Behavioral task
behavioral1
Sample
d610f4481d4596a1925d9a3a1676662c2ed064b0c75a34cd725cee2e092445c8.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
d610f4481d4596a1925d9a3a1676662c2ed064b0c75a34cd725cee2e092445c8.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\Decrypt-All-Files-xxjigfm.txt
http://w7yue5dc5amppggs.onion.cab
http://w7yue5dc5amppggs.tor2web.org
http://w7yue5dc5amppggs.onion/
Targets
-
-
Target
d610f4481d4596a1925d9a3a1676662c2ed064b0c75a34cd725cee2e092445c8
-
Size
702KB
-
MD5
f8b26df426b46725c7eac85e9af2d244
-
SHA1
951846ffd61af16a393dd0ca507bb8d0e4fe5be1
-
SHA256
d610f4481d4596a1925d9a3a1676662c2ed064b0c75a34cd725cee2e092445c8
-
SHA512
1bcc8c4c5b452c7c6fb24b1e76b73c456532429c6bdfa422b73b67a52e604cbca4633b72118354a3d407f3c68321b8777e1949f796091050e8500d642403f7fd
-
SSDEEP
12288:wccMkAibbP0HM2Tpcxl7Fki5YUBI4z86wlhJKeO6F6NDeaGRwf1jByWqCKeaNhe8:IVAugHM2eRrHBI4zg9OUmBZqTBuyf9
Score10/10-
Executes dropped EXE
-