General
-
Target
05894899.exe
-
Size
3.6MB
-
Sample
230528-wgaqaage31
-
MD5
f8db667580cdaa9e33bdd5de9d766153
-
SHA1
0c4a662548618bb027191803c93d2bb828d390be
-
SHA256
cb11ca7f0afe82833d91792dc891a81088f1605c6cc029edecc21b4f433c0756
-
SHA512
5d0ad490ea07b347729136a73633f22c7cf0afc157866eb1cdd2ec7d0c7b10a14ea4255958d7549ce7ac73a88d3d4099f707f0e2beac300e31340e5227d1c60b
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2HI:yDqPe1Cxcxk3ZAEUadzR8yc4HI
Static task
static1
Behavioral task
behavioral1
Sample
05894899.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
05894899.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
05894899.exe
-
Size
3.6MB
-
MD5
f8db667580cdaa9e33bdd5de9d766153
-
SHA1
0c4a662548618bb027191803c93d2bb828d390be
-
SHA256
cb11ca7f0afe82833d91792dc891a81088f1605c6cc029edecc21b4f433c0756
-
SHA512
5d0ad490ea07b347729136a73633f22c7cf0afc157866eb1cdd2ec7d0c7b10a14ea4255958d7549ce7ac73a88d3d4099f707f0e2beac300e31340e5227d1c60b
-
SSDEEP
98304:yDqPoBhz1aRxcSUDk36SAEdhvxWa9P593R8yAVp2HI:yDqPe1Cxcxk3ZAEUadzR8yc4HI
Score10/10-
Contacts a large (3256) amount of remote hosts
This may indicate a network scan to discover remotely running services.
-
Executes dropped EXE
-
Creates a large amount of network flows
This may indicate a network scan to discover remotely running services.
-
Drops file in System32 directory
-