Overview

overview

7

Static

static

1

PO.exe

windows7-x64

7

PO.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    PO.zip

  • Size

    871KB

  • Sample

    230301-wlcensha2t

  • MD5

    2a2b957bfd2aceb705f54a76c8b2f166

  • SHA1

    d6dff448608c58c99b7483b7001c361eeaabc7dd

  • SHA256

    a77c355733e482968a5a410735c655c02446e12ec940920a31e83036f709d8a1

  • SHA512

    9b6243d2de071f6c9bf12a807c13817fd27b9c703bf0a90c4709d11418df1e276bec89c863ba07fc4ad4bcba1365bc97a2c297cb5f6802c76b3bfa033537685e

  • SSDEEP

    24576:hOuH30SkyK5fFatCvaIgH5OzbelPKT2Mn25H:RX0fNFatcgYL2J

Score
7/10

Malware Config

Targets

    • Target

      PO.exe

    • Size

      1.1MB

    • MD5

      52c391a4d3224a3bed92f831d4e1236a

    • SHA1

      0ddf484664dacb98fa7e7b7aca6cdcb31b4b3216

    • SHA256

      7fd5172067f790c21d11dc37987f04bbe9e4c04038074b788ac79bcc83c06f1a

    • SHA512

      c40e3a404799b24edf124fbae410baca2e6f81a25b2cdc36f53c0c212be3caad9b5f8afe9f55374e4234dcff577156ab19bb7a7deba0873ccbcc0f70d604748e

    • SSDEEP

      24576:1MWfSukGK9fNqt4NaYgHvOznGVPKl4OMODDf2+:GUSn5Nqtyg23Hf/

    Score
    7/10

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v6

Tasks