General
-
Target
82ef9e9640e1d6dd8e77c30bbcf58536492faa9851744d602f8f354231cbdfa3
-
Size
1.3MB
-
Sample
221201-hqt9dsdg87
-
MD5
31bf01bc8823907bf30c5e69a9b49dbf
-
SHA1
42612c77be0a167d5125dd4c5f4efc9527e77e8b
-
SHA256
82ef9e9640e1d6dd8e77c30bbcf58536492faa9851744d602f8f354231cbdfa3
-
SHA512
830f1aa7fa742cea0b461678ada7fde6718f4a972076713655cf940af16f0f2141b268074d7291ccb8f6b912b98190630cf2215f6fa745546506efdbdfbb52f2
-
SSDEEP
24576:8IfRiOOA3tvjc/9BI0h1eLHXaglJdaCFPzCvJFr6tF:8I5NVE9+2glJYCF7U+
Malware Config
Targets
-
-
Target
82ef9e9640e1d6dd8e77c30bbcf58536492faa9851744d602f8f354231cbdfa3
-
Size
1.3MB
-
MD5
31bf01bc8823907bf30c5e69a9b49dbf
-
SHA1
42612c77be0a167d5125dd4c5f4efc9527e77e8b
-
SHA256
82ef9e9640e1d6dd8e77c30bbcf58536492faa9851744d602f8f354231cbdfa3
-
SHA512
830f1aa7fa742cea0b461678ada7fde6718f4a972076713655cf940af16f0f2141b268074d7291ccb8f6b912b98190630cf2215f6fa745546506efdbdfbb52f2
-
SSDEEP
24576:8IfRiOOA3tvjc/9BI0h1eLHXaglJdaCFPzCvJFr6tF:8I5NVE9+2glJYCF7U+
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-
Adds Run key to start application
-
Detected potential entity reuse from brand microsoft.
-
Suspicious use of SetThreadContext
-