General
-
Target
58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b
-
Size
702KB
-
Sample
221126-kycenaff35
-
MD5
dc8bc1f88c3da5aa04fea4933d74f3b6
-
SHA1
392a0dfa4eb522e9e187f32274b3597c6a8bb221
-
SHA256
58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b
-
SHA512
1d74b615b3ae7d126636a006c7e2081ed3c3372d8a6e66df548612577740fedca5c4a517287effcf8ccd5090f0bca5aee05840fb67e42a24418a8ae71b8162cf
-
SSDEEP
12288:/lGfhvKuL+jhzhCVNW40CpGSKU9+R5r73mtyq/KeNPBrUw64mvecNFFbs:/lGfhvKp2RpGU9or73mtyq/Kxw3mvecR
Static task
static1
Behavioral task
behavioral1
Sample
58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b.exe
Resource
win10v2004-20220812-en
Malware Config
Extracted
C:\Program Files (x86)\Microsoft Office\CLIPART\PUB60COR\Decrypt-All-Files-jozrmsb.txt
http://w7yue5dc5amppggs.onion.cab
http://w7yue5dc5amppggs.tor2web.org
http://w7yue5dc5amppggs.onion/
Targets
-
-
Target
58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b
-
Size
702KB
-
MD5
dc8bc1f88c3da5aa04fea4933d74f3b6
-
SHA1
392a0dfa4eb522e9e187f32274b3597c6a8bb221
-
SHA256
58553fc3eff5d458d6ae936e2439eca019b7767d4d6f16761b867a3a72ca3e9b
-
SHA512
1d74b615b3ae7d126636a006c7e2081ed3c3372d8a6e66df548612577740fedca5c4a517287effcf8ccd5090f0bca5aee05840fb67e42a24418a8ae71b8162cf
-
SSDEEP
12288:/lGfhvKuL+jhzhCVNW40CpGSKU9+R5r73mtyq/KeNPBrUw64mvecNFFbs:/lGfhvKp2RpGU9or73mtyq/Kxw3mvecR
Score10/10-
Executes dropped EXE
-