General
-
Target
2a3942d213548573af8cb07c13547c0d52d1c3d72365276d6623b3951bd6d1b2
-
Size
2.2MB
-
Sample
230529-d7gx6shd83
-
MD5
41948cd77a6cf817b77be426968a6ad3
-
SHA1
7abc07e7f56fc27130f84d1c7935a0961bd58cb9
-
SHA256
2a3942d213548573af8cb07c13547c0d52d1c3d72365276d6623b3951bd6d1b2
-
SHA512
7b8265d773068f8fa7527106fa07ed9ac7378344617918ac5135ac8676ed109d717a8c7846232a5eb03ff40885d00e1672e624b3f3177359bdd56c748c59277d
-
SSDEEP
24576:OOfsfKozBKHAhRh3KzPSA7R7Bt28SVSVlzyQOQZ9IEb68vL4R+2pYJeCYMXABtQ:PBozBdhEV7q8bOQnIFWY+3Je0w4
Static task
static1
Behavioral task
behavioral1
Sample
2a3942d213548573af8cb07c13547c0d52d1c3d72365276d6623b3951bd6d1b2.exe
Resource
win7-20230220-en
Malware Config
Targets
-
-
Target
2a3942d213548573af8cb07c13547c0d52d1c3d72365276d6623b3951bd6d1b2
-
Size
2.2MB
-
MD5
41948cd77a6cf817b77be426968a6ad3
-
SHA1
7abc07e7f56fc27130f84d1c7935a0961bd58cb9
-
SHA256
2a3942d213548573af8cb07c13547c0d52d1c3d72365276d6623b3951bd6d1b2
-
SHA512
7b8265d773068f8fa7527106fa07ed9ac7378344617918ac5135ac8676ed109d717a8c7846232a5eb03ff40885d00e1672e624b3f3177359bdd56c748c59277d
-
SSDEEP
24576:OOfsfKozBKHAhRh3KzPSA7R7Bt28SVSVlzyQOQZ9IEb68vL4R+2pYJeCYMXABtQ:PBozBdhEV7q8bOQnIFWY+3Je0w4
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-