General
-
Target
9086257dbe83ef35d3596dd09e5c92e28caaaeb2748e6e698119cf0fb3b845da
-
Size
4.1MB
-
Sample
230201-j6lgvsed2z
-
MD5
c6ce7fc903fc15f71188cc2ea6145b5c
-
SHA1
3f5aa484e0cf2e12f49fa2351693c44f3e48418f
-
SHA256
9086257dbe83ef35d3596dd09e5c92e28caaaeb2748e6e698119cf0fb3b845da
-
SHA512
356dfbf9d5d226b805c9dca86e7222f35dd1d5bbac62aa3c827f1f35c44cd65d5869b3e069ed3b134b20fd4fd2512a7e515e0e0f2cb1dfdb1440a6043562e58a
-
SSDEEP
98304:FGlg+U/Ft9Vv1UNKIcgi6b5UsbqQr0xHyWAS22fdE5Ypkk3tjc:FG2DvCL+K7bq9xfRpkAY
Static task
static1
Malware Config
Targets
-
-
Target
9086257dbe83ef35d3596dd09e5c92e28caaaeb2748e6e698119cf0fb3b845da
-
Size
4.1MB
-
MD5
c6ce7fc903fc15f71188cc2ea6145b5c
-
SHA1
3f5aa484e0cf2e12f49fa2351693c44f3e48418f
-
SHA256
9086257dbe83ef35d3596dd09e5c92e28caaaeb2748e6e698119cf0fb3b845da
-
SHA512
356dfbf9d5d226b805c9dca86e7222f35dd1d5bbac62aa3c827f1f35c44cd65d5869b3e069ed3b134b20fd4fd2512a7e515e0e0f2cb1dfdb1440a6043562e58a
-
SSDEEP
98304:FGlg+U/Ft9Vv1UNKIcgi6b5UsbqQr0xHyWAS22fdE5Ypkk3tjc:FG2DvCL+K7bq9xfRpkAY
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Modifies Windows Firewall
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-