General
-
Target
BlitzedV12.rar
-
Size
3.2MB
-
Sample
230807-m2fmlagb5s
-
MD5
0a1db15f53588c5d2ada9e87e809ebe8
-
SHA1
3fad21da148dd1270c11980e5056faae9af12a61
-
SHA256
a8f24589e155013f5df37a7fdb03ca0676fac453bc0d575e99e33c220b5faa9a
-
SHA512
decde43581fcfe5828fc55d3c144a6ca6b42d82263b62b2c7497f45f1d3c1ddb61f7a13f293207af07de42ebc8fa269c2db3d7204c5a22010f335f35b96d13e5
-
SSDEEP
98304:yCdFi7YqjAFLzoZAvvwhy/3bk9zhuKBScTsZjcG:yCdFixjHAHkik9zhuuScTsZQG
Static task
static1
Behavioral task
behavioral1
Sample
BlitzedV12.rar
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
BlitzedV12.rar
Resource
win10v2004-20230703-en
Behavioral task
behavioral3
Sample
BlitzedV12/BlitzedV12.exe
Resource
win7-20230712-en
Malware Config
Extracted
xworm
abstract-specials.gl.at.ply.gg:14234
TXQbQOk8FhaME6Mk
-
install_file
USB.exe
Targets
-
-
Target
BlitzedV12.rar
-
Size
3.2MB
-
MD5
0a1db15f53588c5d2ada9e87e809ebe8
-
SHA1
3fad21da148dd1270c11980e5056faae9af12a61
-
SHA256
a8f24589e155013f5df37a7fdb03ca0676fac453bc0d575e99e33c220b5faa9a
-
SHA512
decde43581fcfe5828fc55d3c144a6ca6b42d82263b62b2c7497f45f1d3c1ddb61f7a13f293207af07de42ebc8fa269c2db3d7204c5a22010f335f35b96d13e5
-
SSDEEP
98304:yCdFi7YqjAFLzoZAvvwhy/3bk9zhuKBScTsZjcG:yCdFixjHAHkik9zhuuScTsZQG
Score3/10 -
-
-
Target
BlitzedV12/BlitzedV12.exe
-
Size
1.7MB
-
MD5
4377de8e76e8e36f21c1e5e16956b8dd
-
SHA1
3c302c67cafb4531d876170f4798c71e83bfd413
-
SHA256
af215e8e3f564e1af763cb615b27bb5514388414e45f7b22c8289deb31730255
-
SHA512
9ea1f1f4666dc2cb71572671a463225db975d2858c8b9c42e4aa2f8117c3c8d064bf20183045758b7ecd523194e37a374e7b55135e18b320110bfc424f2554d0
-
SSDEEP
49152:DmoBdMaWnYeW1/AI8WUGFGz6gvubjrEtn:maWniqTHGczhKktn
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-