General
-
Target
5ce8f04ae0dfd9fadb4cdf96af73391860025331be70fa72521ccbf0e9808c9e
-
Size
1.4MB
-
Sample
221126-k62phsga35
-
MD5
79f6f644f8a55b81cbcb8408805ef563
-
SHA1
f7bbe4ed6329b676ec8f1af39df43e0781b28a77
-
SHA256
5ce8f04ae0dfd9fadb4cdf96af73391860025331be70fa72521ccbf0e9808c9e
-
SHA512
77f082deda004cff35cf931d0e19d0a0ed30385993580d09451b75a30489561b6abbe9ecd29db4f786508e40a08abb449708f855bcb130df610f058dfcead524
-
SSDEEP
24576:r8E5KUHa9KU2pkJ32Ld55+YwvFEjCePyQC:5THayEGLdnLY8qQC
Static task
static1
Behavioral task
behavioral1
Sample
5ce8f04ae0dfd9fadb4cdf96af73391860025331be70fa72521ccbf0e9808c9e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5ce8f04ae0dfd9fadb4cdf96af73391860025331be70fa72521ccbf0e9808c9e.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
5ce8f04ae0dfd9fadb4cdf96af73391860025331be70fa72521ccbf0e9808c9e
-
Size
1.4MB
-
MD5
79f6f644f8a55b81cbcb8408805ef563
-
SHA1
f7bbe4ed6329b676ec8f1af39df43e0781b28a77
-
SHA256
5ce8f04ae0dfd9fadb4cdf96af73391860025331be70fa72521ccbf0e9808c9e
-
SHA512
77f082deda004cff35cf931d0e19d0a0ed30385993580d09451b75a30489561b6abbe9ecd29db4f786508e40a08abb449708f855bcb130df610f058dfcead524
-
SSDEEP
24576:r8E5KUHa9KU2pkJ32Ld55+YwvFEjCePyQC:5THayEGLdnLY8qQC
Score8/10-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-