General
-
Target
8371ff1065fad32413e0ce6691b709f05162ecb1b6cd2bfdf27ef204bf617559
-
Size
181KB
-
Sample
221128-k7fhnsca43
-
MD5
4830f581162018127a51211197be6974
-
SHA1
d7fba119b6e9c199a46e531836bf05d91fe707e3
-
SHA256
8371ff1065fad32413e0ce6691b709f05162ecb1b6cd2bfdf27ef204bf617559
-
SHA512
f4195ad86fc9c4cdbd5c1d3df676d251952e0644812b923a19f9453f6164a1e923ac80922acc3811c6abb8bb4540ba77c9711cd2dc54f6f4b3b8fc82d17f4c2d
-
SSDEEP
3072:pCWupUHvFFmkAWj8ZqAbgUKeebYuQEzufwjmS:pCUHOkAWcHhmzE8
Static task
static1
Behavioral task
behavioral1
Sample
8371ff1065fad32413e0ce6691b709f05162ecb1b6cd2bfdf27ef204bf617559.exe
Resource
win7-20220812-en
Malware Config
Extracted
pony
http://ejikee.comxa.com/gate.php
Targets
-
-
Target
8371ff1065fad32413e0ce6691b709f05162ecb1b6cd2bfdf27ef204bf617559
-
Size
181KB
-
MD5
4830f581162018127a51211197be6974
-
SHA1
d7fba119b6e9c199a46e531836bf05d91fe707e3
-
SHA256
8371ff1065fad32413e0ce6691b709f05162ecb1b6cd2bfdf27ef204bf617559
-
SHA512
f4195ad86fc9c4cdbd5c1d3df676d251952e0644812b923a19f9453f6164a1e923ac80922acc3811c6abb8bb4540ba77c9711cd2dc54f6f4b3b8fc82d17f4c2d
-
SSDEEP
3072:pCWupUHvFFmkAWj8ZqAbgUKeebYuQEzufwjmS:pCUHOkAWcHhmzE8
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-