General
-
Target
99cf5f08b0933da8a5785c8e8695e6afcc4975d56e986ed162ad1c9e6ec6f010
-
Size
129KB
-
Sample
221128-e3kc6sef49
-
MD5
b05827b477d68c75ec09dd9c069efc25
-
SHA1
4a79ff851f0f88f0da4c78e73f6096534c3774d7
-
SHA256
99cf5f08b0933da8a5785c8e8695e6afcc4975d56e986ed162ad1c9e6ec6f010
-
SHA512
5d0420200c12ab9fab997da36b28eda51342fc4dc0bb1607dd2aa56e20df808d7d0ea36f1fd7382768a56ab5c1e3f6504032a353dcedb46f9cd1a4ead1a7bcf5
-
SSDEEP
3072:rhR98zd/EtzAAa1roAl4bI+m/B6SVqCgQfBUnPy8L66iiSM:rhodEt8AMrmI+m/B6SVqCgQfBUPy8L6H
Static task
static1
Behavioral task
behavioral1
Sample
99cf5f08b0933da8a5785c8e8695e6afcc4975d56e986ed162ad1c9e6ec6f010.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
99cf5f08b0933da8a5785c8e8695e6afcc4975d56e986ed162ad1c9e6ec6f010.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
99cf5f08b0933da8a5785c8e8695e6afcc4975d56e986ed162ad1c9e6ec6f010
-
Size
129KB
-
MD5
b05827b477d68c75ec09dd9c069efc25
-
SHA1
4a79ff851f0f88f0da4c78e73f6096534c3774d7
-
SHA256
99cf5f08b0933da8a5785c8e8695e6afcc4975d56e986ed162ad1c9e6ec6f010
-
SHA512
5d0420200c12ab9fab997da36b28eda51342fc4dc0bb1607dd2aa56e20df808d7d0ea36f1fd7382768a56ab5c1e3f6504032a353dcedb46f9cd1a4ead1a7bcf5
-
SSDEEP
3072:rhR98zd/EtzAAa1roAl4bI+m/B6SVqCgQfBUnPy8L66iiSM:rhodEt8AMrmI+m/B6SVqCgQfBUPy8L6H
Score9/10-
Drops startup file
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-