General
-
Target
11736431798.zip
-
Size
272KB
-
Sample
230912-nj1eqaee88
-
MD5
7ad6c80d093e34ce63ebe0b841582594
-
SHA1
ff60964667022634aecf5083431ba9a1bef565ba
-
SHA256
0c474ff67cea330e4863aecc8937e065e3e6edc58cf3c887da76a213f54c5e9d
-
SHA512
399a8991cef7f8886a78fdc0f83e46b8536d19d64b703347bcf54dd1569fdf5d9ddeb213cba5a105aa52b63ab33e87e3e44d40d98afe571e8c7839b257f00745
-
SSDEEP
6144:iyVDmXMprNaSU63JZ9vWMKA1YOFOGpZiRQiqfDVLsNZ:PBV5aSDZpmA1YOFO1RQiqreP
Static task
static1
Behavioral task
behavioral1
Sample
cc15816b14bf6cb7a7a3ce5159539411a8f69a09eaa9a98328b0a4a5055ab422.exe
Resource
win10-20230831-en
Malware Config
Targets
-
-
Target
cc15816b14bf6cb7a7a3ce5159539411a8f69a09eaa9a98328b0a4a5055ab422
-
Size
790KB
-
MD5
0c5f113701974e9da779170e8dca0eee
-
SHA1
094e37abefd340fbdaf31bee16ff7880029329c6
-
SHA256
cc15816b14bf6cb7a7a3ce5159539411a8f69a09eaa9a98328b0a4a5055ab422
-
SHA512
33001dccd583696efae5b24c1485e4fee44e2375c60985224227c958b97726f51d0ba3de1144980096b3006cd2d24f7c79bcd4364ecf316cb08c4860197ef7b9
-
SSDEEP
12288:SuGj5je69oqAmj5oMqKyKAuqOAP0wu7eMb01JQntLOCHLMo0H1:SXhe29AmjkKuu7emHLMxV
Score9/10-
CoreEntity .NET Packer
A .NET packer called CoreEntity where it has embedded the payload as a BitMap object which is later decrypted.
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-