General
-
Target
AfterDark(1).exe
-
Size
9.5MB
-
Sample
230401-jxdqnagg99
-
MD5
0530c12b2c3f0431745df3599c0125c4
-
SHA1
ee0bea05a8fca4157f29f4d21616db4e4f2c2f23
-
SHA256
dc621c818da39c39562c37bc6a94b72d557da3718ae3ab111a182dca1540b50d
-
SHA512
e903343c96d08a7854399afd973634e84835b0213ab56522454f77742fb48d05c87545788d3c964cd6a75e0a1165710539079e99afbd86b4e1e8021211312cab
-
SSDEEP
196608:0ttH9V+qTC8QS5HpXL7h4LuDF8MnqiPFl8cGQjxXJ3xSy8MipSg0jq/17:0tpVTLQK5Xh4LsFRnjv5Jgeeci
Behavioral task
behavioral1
Sample
AfterDark(1).exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
AfterDark(1).exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
AfterDark(1).exe
-
Size
9.5MB
-
MD5
0530c12b2c3f0431745df3599c0125c4
-
SHA1
ee0bea05a8fca4157f29f4d21616db4e4f2c2f23
-
SHA256
dc621c818da39c39562c37bc6a94b72d557da3718ae3ab111a182dca1540b50d
-
SHA512
e903343c96d08a7854399afd973634e84835b0213ab56522454f77742fb48d05c87545788d3c964cd6a75e0a1165710539079e99afbd86b4e1e8021211312cab
-
SSDEEP
196608:0ttH9V+qTC8QS5HpXL7h4LuDF8MnqiPFl8cGQjxXJ3xSy8MipSg0jq/17:0tpVTLQK5Xh4LsFRnjv5Jgeeci
Score7/10-
Suspicious use of NtSetInformationThreadHideFromDebugger
-