General
-
Target
SecuriteInfo.com.Win32.PWSX-gen.8878.21189.exe
-
Size
772KB
-
Sample
221201-nnwx4age5w
-
MD5
225616a6672687c30a85b7b18467518b
-
SHA1
054d5fec9212ea53cb04c1d28a6063c5a4c065c3
-
SHA256
4556daea929e88c1831b8a92814ae2f57b9b8a57be14487a03650ee81d36b67e
-
SHA512
c21643a6a1ad305fd83b31ef3105a22502addd21860bec29a1e0318703417093549b6a2709df2739c5358669abaf67f9c9e367f127d2a633b3dbe0b25f7f368b
-
SSDEEP
24576:kQmnzQE9U3G6PDIaRBNlwCbvk74FRXBaf8i8HtQCZt9lM:kQmzQvGeDrrNzAURw89/O
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Win32.PWSX-gen.8878.21189.exe
Resource
win7-20220812-en
Malware Config
Extracted
formbook
ntzb
ec/NM1mI984Gb/9r
LIh84/7lSr8jyCJjNRy3cy5K/w==
ywyL4wf5IYKQvdNGr5hpUcZk
ibXIRT7wwpAGb/9r
jvlCCTIkf3aEc0yrhiKei9M=
JpvChtpFpghexluRIQ==
ufPzZvM9cUyAySmfh3VZ
IWlUsdnOG2qvOYvJMp9v2/IU7Q==
AShx1yFdwhMDEvts6yKei9M=
G0s8BkB7oPAhNESxLJisov0O4g==
5whNpsfrfGq6bT5VM5c=
7YrOda8xKRZpbX55Rp0=
lff5IDBTuCxnxluRIQ==
s/nqUHamCtIGb/9r
IqvUNFmH8soGb/9r
l8GtEDwvaHre8/VBHFv+wQ==
cb4m5SZjvr4EuU20ORuv4zoQMrY=
msP5quMgh5TOcT5VM5c=
yvEWmNz1G6jvgN1EHFv+wQ==
ZfcqLcYYqRdu9EWF7mUynGEx7sib
oC9SS+ghXRCgR6kM3dGiZWaDYDGfllT60Q==
VUIK0hVHWvYXMQ==
VKTw+/16n5qR
s/RwhmOG9s4Gb/9r
aAsYoEN62lR1xluRIQ==
8GOp4R1hi+k9sFGePqGfyQ==
LXFw4m/QLYLbcMsm3j7R7DoQMrY=
tXL5jv2EWvYXMQ==
qcf7uuPfL5DoZka7OA==
3ukiaY+Fsgj8Fx86GZSozg==
1yikZ3SLxJPFZ/hpKNaQhtM=
PrXj6CozmR4jVkKVWr2wov0O4g==
g/YzYBhbimXH6/pU2kUIov0O4g==
OJeQF8IJdbMEKg8=
PrEldZm98730D+s5HFv+wQ==
0VCEk9XRNiaLvNU1HFv+wQ==
H4hYSMz+bmR070RubWNY
919MSu5Jt3MVLBA=
1B8mlsPjIa8rLw0=
Gf6/pr6AWvYXMQ==
tUeCDlf1VUhLNlzBPA==
iKnS9J4HaU68LP9P10YK1Q==
htnZtNkBXsDYTvM/sJ8=
CVlevDlkwT9uiZX4a9+hD93xhBrgj0h8
hgFKF/x6n5qR
5W62bbL9Kq8rLw0=
+xXftgVBZKjpITedE5+Obn2RI0DBgQ==
kpsnN3Bn7A==
C6ThjtUwzS6ehF2YKQ==
0WObSldDe2V170ZubWNY
v+0ksf0RNI8MMRBjG6Csov0O4g==
JzS/lA9DWvYXMQ==
7V2hcZydC3zehFaaIYA=
0jzCnoDdBRCpaWrfqTmi3joQMrY=
RXenOe8sXMQipfpi6TQeLToQMrY=
ncfD0CkpTZh/MZr5r951ScQ=
039/6y96n5qR
Nb/4r8v1ViIMmfJHKRr6fQZY9r3Lhw==
5i+jXqPuI68rLw0=
T6iuUjknViQeyyhfIB3RgdNu
KoeSxNvRJa8rLw0=
mrmLDLzXA2uDiWvb7AAE1g==
nCJiJz96n5qR
6EWQM05vy68VFoFfFbZ1LqZY9Q==
seismoeng.com
Targets
-
-
Target
SecuriteInfo.com.Win32.PWSX-gen.8878.21189.exe
-
Size
772KB
-
MD5
225616a6672687c30a85b7b18467518b
-
SHA1
054d5fec9212ea53cb04c1d28a6063c5a4c065c3
-
SHA256
4556daea929e88c1831b8a92814ae2f57b9b8a57be14487a03650ee81d36b67e
-
SHA512
c21643a6a1ad305fd83b31ef3105a22502addd21860bec29a1e0318703417093549b6a2709df2739c5358669abaf67f9c9e367f127d2a633b3dbe0b25f7f368b
-
SSDEEP
24576:kQmnzQE9U3G6PDIaRBNlwCbvk74FRXBaf8i8HtQCZt9lM:kQmzQvGeDrrNzAURw89/O
-
Suspicious use of SetThreadContext
-