General
-
Target
thunder1 (4).zip
-
Size
10.2MB
-
Sample
231208-a9faksgd54
-
MD5
37bd3907725b17d98aa8f7cd140f11dc
-
SHA1
f188bfe2905c92db02d6d7880285fccffa70be8e
-
SHA256
380dd3e02170e5f569d155c22c2dabc4622dcfb018fa1239d493d55448c439a1
-
SHA512
041879afea8050b2876529475d60917377a4296c36096a462abb2323a544146d07c160824a916fa5de41008debeede784f5f7a3e7ba59eaee118a65abe8eff33
-
SSDEEP
196608:YiQMcrB1b4n8jMMb1nW4ieBTrbjqwPHso3Ub+EdwpmV7WnwPh0kWu:YhMc6eU4d9tvsjh6DwPh0kWu
Static task
static1
Behavioral task
behavioral1
Sample
thunder1 (4).zip
Resource
win10v2004-20231127-es
Malware Config
Targets
-
-
Target
thunder1 (4).zip
-
Size
10.2MB
-
MD5
37bd3907725b17d98aa8f7cd140f11dc
-
SHA1
f188bfe2905c92db02d6d7880285fccffa70be8e
-
SHA256
380dd3e02170e5f569d155c22c2dabc4622dcfb018fa1239d493d55448c439a1
-
SHA512
041879afea8050b2876529475d60917377a4296c36096a462abb2323a544146d07c160824a916fa5de41008debeede784f5f7a3e7ba59eaee118a65abe8eff33
-
SSDEEP
196608:YiQMcrB1b4n8jMMb1nW4ieBTrbjqwPHso3Ub+EdwpmV7WnwPh0kWu:YhMc6eU4d9tvsjh6DwPh0kWu
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-