General
-
Target
Install.exe
-
Size
14.2MB
-
Sample
230617-zzs65ada58
-
MD5
d7a332325226a2edf0dfc64d6fc0c07b
-
SHA1
7edc5a2b7f1a03ec95026a9a4c123d6599c785df
-
SHA256
5337a54c97cc00c5fc9a9ee3f2209545302908746217a82633db2729114a122c
-
SHA512
ed29a97da914b7ec71b0ac152f3bb6c597a0cf2a4163e43d069798dc622a06b8e1ef30888fc0ef0a69a519ffd2e3f0587660741a38565760e9c2a03f4ada4013
-
SSDEEP
196608:ubcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:cmKr4YYH+EUWpgXAmKr4YYH+EUWpgX
Behavioral task
behavioral1
Sample
Install.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
Install.exe
-
Size
14.2MB
-
MD5
d7a332325226a2edf0dfc64d6fc0c07b
-
SHA1
7edc5a2b7f1a03ec95026a9a4c123d6599c785df
-
SHA256
5337a54c97cc00c5fc9a9ee3f2209545302908746217a82633db2729114a122c
-
SHA512
ed29a97da914b7ec71b0ac152f3bb6c597a0cf2a4163e43d069798dc622a06b8e1ef30888fc0ef0a69a519ffd2e3f0587660741a38565760e9c2a03f4ada4013
-
SSDEEP
196608:ubcUG4raKu24YY7HVT4hV0AD6QgqKRgXabcUG4raKu24YY7HVT4hV0AD6QgqKRgX:cmKr4YYH+EUWpgXAmKr4YYH+EUWpgX
Score7/10-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-