General
-
Target
0e43fde459bde11b1ae07a881a27718406cf5e7a6433b151d555f697d8501604
-
Size
2.8MB
-
Sample
221128-mtv3bagd83
-
MD5
5bf1ac8aeb2e05df61c581340cbbae76
-
SHA1
bfd0e18006c4a031509522e288a51eca071caf53
-
SHA256
0e43fde459bde11b1ae07a881a27718406cf5e7a6433b151d555f697d8501604
-
SHA512
d805d8cd262baea47e894265b380ce3245a739e7c30c3ef3f4118a66d3dc29ae4107ef802dfbf8fc3a1def1843825acdfb4a4342b416c1821b39a842528a2d05
-
SSDEEP
49152:AbCjPKNqQwb7N36AlP/VXh+UfhnNW5que5xuv:oCjPKNL
Static task
static1
Behavioral task
behavioral1
Sample
0e43fde459bde11b1ae07a881a27718406cf5e7a6433b151d555f697d8501604.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
0e43fde459bde11b1ae07a881a27718406cf5e7a6433b151d555f697d8501604.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
0e43fde459bde11b1ae07a881a27718406cf5e7a6433b151d555f697d8501604
-
Size
2.8MB
-
MD5
5bf1ac8aeb2e05df61c581340cbbae76
-
SHA1
bfd0e18006c4a031509522e288a51eca071caf53
-
SHA256
0e43fde459bde11b1ae07a881a27718406cf5e7a6433b151d555f697d8501604
-
SHA512
d805d8cd262baea47e894265b380ce3245a739e7c30c3ef3f4118a66d3dc29ae4107ef802dfbf8fc3a1def1843825acdfb4a4342b416c1821b39a842528a2d05
-
SSDEEP
49152:AbCjPKNqQwb7N36AlP/VXh+UfhnNW5que5xuv:oCjPKNL
Score8/10-
Uses the VBS compiler for execution
-
Accesses Microsoft Outlook accounts
-
Checks for any installed AV software in registry
-
Suspicious use of SetThreadContext
-