General
-
Target
5c2bc5ec38bb33b3a53118d037e1a99bcd654f937fdf71f4bc94424219d9acff
-
Size
1.4MB
-
Sample
230801-kp44baef79
-
MD5
75eb15eca12ee024d3673aa01219b979
-
SHA1
e3b2d3b9d82584b54dbcef73e189f8469b675aa7
-
SHA256
5c2bc5ec38bb33b3a53118d037e1a99bcd654f937fdf71f4bc94424219d9acff
-
SHA512
6307427f8f405e91237ff330dbcce5b76c8def511274a5b616967944c047e52b4ec349f8f82e66009fb5a50309cea91799573fbd73c6e4c62def7147c4f2f41d
-
SSDEEP
24576:U2G/nvxW3Ww0tRp8GiXTBhq7yRDvHcUcjUvy0lr3Tl6icOB/UWoT:UbA30H4zF0UMSAicOB/UWk
Malware Config
Targets
-
-
Target
5c2bc5ec38bb33b3a53118d037e1a99bcd654f937fdf71f4bc94424219d9acff
-
Size
1.4MB
-
MD5
75eb15eca12ee024d3673aa01219b979
-
SHA1
e3b2d3b9d82584b54dbcef73e189f8469b675aa7
-
SHA256
5c2bc5ec38bb33b3a53118d037e1a99bcd654f937fdf71f4bc94424219d9acff
-
SHA512
6307427f8f405e91237ff330dbcce5b76c8def511274a5b616967944c047e52b4ec349f8f82e66009fb5a50309cea91799573fbd73c6e4c62def7147c4f2f41d
-
SSDEEP
24576:U2G/nvxW3Ww0tRp8GiXTBhq7yRDvHcUcjUvy0lr3Tl6icOB/UWoT:UbA30H4zF0UMSAicOB/UWk
Score8/10-
Modifies Windows Firewall
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-