General
-
Target
f42541837164ed24c02a271a8d1854826d8ddf721f38cfe4e67ad8070a447f91
-
Size
5.2MB
-
Sample
231124-ematssgc2x
-
MD5
7da489328cdbb0c8ec5db85bb3714319
-
SHA1
eaba420e0b553cc0eba2b876065e330e11cd7f96
-
SHA256
f42541837164ed24c02a271a8d1854826d8ddf721f38cfe4e67ad8070a447f91
-
SHA512
74bc35bf2dd25af41d5bdf0d918dac3e0ba7f8d397e88f31c0589720404887b7056f03d7bc345f997e1468905b5c18179c2380ff8178fc4e3295bd6dd2993794
-
SSDEEP
98304:j4UQ13eDvQYGAyN/N99Ewn91ougfcSndlhRwcY3m5MXQBLuYZq0lE:PNTQUyJN99EjfRdlhRhY3UBLFFu
Malware Config
Targets
-
-
Target
f42541837164ed24c02a271a8d1854826d8ddf721f38cfe4e67ad8070a447f91
-
Size
5.2MB
-
MD5
7da489328cdbb0c8ec5db85bb3714319
-
SHA1
eaba420e0b553cc0eba2b876065e330e11cd7f96
-
SHA256
f42541837164ed24c02a271a8d1854826d8ddf721f38cfe4e67ad8070a447f91
-
SHA512
74bc35bf2dd25af41d5bdf0d918dac3e0ba7f8d397e88f31c0589720404887b7056f03d7bc345f997e1468905b5c18179c2380ff8178fc4e3295bd6dd2993794
-
SSDEEP
98304:j4UQ13eDvQYGAyN/N99Ewn91ougfcSndlhRwcY3m5MXQBLuYZq0lE:PNTQUyJN99EjfRdlhRhY3UBLFFu
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-