General
-
Target
6bb40ed95f770955ea7cf27e4785612e.exe
-
Size
533KB
-
Sample
230531-pwq79afc7s
-
MD5
6bb40ed95f770955ea7cf27e4785612e
-
SHA1
db93260f6bdeb2321fd73019af3d6182c97fd2c5
-
SHA256
f8ef3e3b18e72eebb4b18edbc90f7f5851ab0af044473fa2856fc974f0c33d6c
-
SHA512
e97a8aa76ebc4e473323cc8e7413fa8536ea57986f1fd4a45ec39bf3c86a817852fa2d9531c1bb622d0611d26e7afb970da9833220fc12b3170417718a1e12aa
-
SSDEEP
12288:NJsZ3dUdAz1aVlOsBfDtNK+UmDFZIdP03d0cMvNc:rsH6FvOYtNK+HrId03dEvS
Static task
static1
Behavioral task
behavioral1
Sample
6bb40ed95f770955ea7cf27e4785612e.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
6bb40ed95f770955ea7cf27e4785612e.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
6bb40ed95f770955ea7cf27e4785612e.exe
-
Size
533KB
-
MD5
6bb40ed95f770955ea7cf27e4785612e
-
SHA1
db93260f6bdeb2321fd73019af3d6182c97fd2c5
-
SHA256
f8ef3e3b18e72eebb4b18edbc90f7f5851ab0af044473fa2856fc974f0c33d6c
-
SHA512
e97a8aa76ebc4e473323cc8e7413fa8536ea57986f1fd4a45ec39bf3c86a817852fa2d9531c1bb622d0611d26e7afb970da9833220fc12b3170417718a1e12aa
-
SSDEEP
12288:NJsZ3dUdAz1aVlOsBfDtNK+UmDFZIdP03d0cMvNc:rsH6FvOYtNK+HrId03dEvS
Score8/10-
Dave packer
Detects executable using a packer named 'Dave' by the community, based on a string at the end.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-