General
-
Target
1a40a8f87e649416ae337d1b634112bc2c5c78f867834982f4b4716c71357e71
-
Size
905KB
-
Sample
221207-qw2jnafa65
-
MD5
ddd2812e43f859ee1f763d51839f838e
-
SHA1
c1aa1e6b405676a54060cdc747e47fb6e85ee536
-
SHA256
1a40a8f87e649416ae337d1b634112bc2c5c78f867834982f4b4716c71357e71
-
SHA512
42ad95ce568d69451cbfb284c4ee1e1dd641e5c1bbeefbfe469d165a1506ea40e2882759535e9fb055fa284977dc4e1ddbbf49a2bf72550b8f9ba273aa85f18b
-
SSDEEP
24576:D4CDAKIv2P/ghIS8ickIqplgKiDvRjK7A:D4CDpdPoRoB6g3l
Static task
static1
Behavioral task
behavioral1
Sample
1a40a8f87e649416ae337d1b634112bc2c5c78f867834982f4b4716c71357e71.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
C:\readme.txt
http://obzuqvr5424kkc4unbq2p2i67ny3zngce3tbdr37nicjqesgqcgomfqd.onion/?ST1GHJLMOPR
https://yip.su/2QstD5
Targets
-
-
Target
1a40a8f87e649416ae337d1b634112bc2c5c78f867834982f4b4716c71357e71
-
Size
905KB
-
MD5
ddd2812e43f859ee1f763d51839f838e
-
SHA1
c1aa1e6b405676a54060cdc747e47fb6e85ee536
-
SHA256
1a40a8f87e649416ae337d1b634112bc2c5c78f867834982f4b4716c71357e71
-
SHA512
42ad95ce568d69451cbfb284c4ee1e1dd641e5c1bbeefbfe469d165a1506ea40e2882759535e9fb055fa284977dc4e1ddbbf49a2bf72550b8f9ba273aa85f18b
-
SSDEEP
24576:D4CDAKIv2P/ghIS8ickIqplgKiDvRjK7A:D4CDpdPoRoB6g3l
Score10/10-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-