General
-
Target
Venom_Cracked_2.7.0.0.exe
-
Size
33.2MB
-
Sample
230423-szlcysec39
-
MD5
8111c089c5129f5c9735e76c57d31020
-
SHA1
0d2ccd0c2fd34b78078c43ce7571fa91621223fa
-
SHA256
b37423358c0e708701938d06e3aa121aaec6e9c1f57fefbc302e22489dd6639d
-
SHA512
df99f76054278729a654e2af748030a39acf401975281462f7f673b45b640d2e1254f72865804bd5a89616e52972b2016242f5fb0c5f999adedec7962787e576
-
SSDEEP
786432:PjGGIhIroPgwam6vSYjC2UXnAwLsu4J+QcFR5p4:7G9GUPgbXUXnAyY+QcXT4
Static task
static1
Behavioral task
behavioral1
Sample
Venom_Cracked_2.7.0.0.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
Venom_Cracked_2.7.0.0.exe
-
Size
33.2MB
-
MD5
8111c089c5129f5c9735e76c57d31020
-
SHA1
0d2ccd0c2fd34b78078c43ce7571fa91621223fa
-
SHA256
b37423358c0e708701938d06e3aa121aaec6e9c1f57fefbc302e22489dd6639d
-
SHA512
df99f76054278729a654e2af748030a39acf401975281462f7f673b45b640d2e1254f72865804bd5a89616e52972b2016242f5fb0c5f999adedec7962787e576
-
SSDEEP
786432:PjGGIhIroPgwam6vSYjC2UXnAwLsu4J+QcFR5p4:7G9GUPgbXUXnAyY+QcXT4
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-