General
-
Target
58a00d29777fea23590c05479d84bdc35fe11c71a630cff6a7de868e6464248e
-
Size
1.1MB
-
Sample
221221-f66w1seg8t
-
MD5
5da677383072aa1b16364c5d580414f2
-
SHA1
4e9cc6e2e72453eac12712f5306595ba4d1f4e43
-
SHA256
58a00d29777fea23590c05479d84bdc35fe11c71a630cff6a7de868e6464248e
-
SHA512
ba70922a2352e3443fc24d695e9fafe1f63a495fffcc060c3ce320c544aa2228ec101a7970ab4c3580339b3e3815a88dce7a017e84416b1f86bdf75ce4482b76
-
SSDEEP
24576:dTiahP6tMNEBezImabtZrx4VzPDWDs6VAmre:0tMNE0zImaz94tPDWDs6ym6
Static task
static1
Behavioral task
behavioral1
Sample
58a00d29777fea23590c05479d84bdc35fe11c71a630cff6a7de868e6464248e.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
58a00d29777fea23590c05479d84bdc35fe11c71a630cff6a7de868e6464248e
-
Size
1.1MB
-
MD5
5da677383072aa1b16364c5d580414f2
-
SHA1
4e9cc6e2e72453eac12712f5306595ba4d1f4e43
-
SHA256
58a00d29777fea23590c05479d84bdc35fe11c71a630cff6a7de868e6464248e
-
SHA512
ba70922a2352e3443fc24d695e9fafe1f63a495fffcc060c3ce320c544aa2228ec101a7970ab4c3580339b3e3815a88dce7a017e84416b1f86bdf75ce4482b76
-
SSDEEP
24576:dTiahP6tMNEBezImabtZrx4VzPDWDs6VAmre:0tMNE0zImaz94tPDWDs6ym6
Score10/10-
Blocklisted process makes network request
-
Sets DLL path for service in the registry
-
Sets service image path in registry
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-