General
-
Target
file
-
Size
6.9MB
-
Sample
231210-xy78jsaecp
-
MD5
b4c1fe8ec7e60dd2d1af8036322ed7b3
-
SHA1
939f9e7fdeeae2a1deb9438c6545cc5c857dd4ec
-
SHA256
706d7da494980ca614dd40cdff3a271be9622d43643e34cac7917670adb3f3ad
-
SHA512
1b00ad96a8fa43a35acb2791108561dee1ec408b97ee620c535cd950e4e617dd0139d8e47689073f0d89364ea662172ebbe1dd85685307699b457cb87f221674
-
SSDEEP
196608:xSnj/mmV+GsH+bNueuJRAZVAOk5Vvz+tqE9AmEkzj:xSjumV+jHUodIjk5VzfE9Awzj
Malware Config
Targets
-
-
Target
file
-
Size
6.9MB
-
MD5
b4c1fe8ec7e60dd2d1af8036322ed7b3
-
SHA1
939f9e7fdeeae2a1deb9438c6545cc5c857dd4ec
-
SHA256
706d7da494980ca614dd40cdff3a271be9622d43643e34cac7917670adb3f3ad
-
SHA512
1b00ad96a8fa43a35acb2791108561dee1ec408b97ee620c535cd950e4e617dd0139d8e47689073f0d89364ea662172ebbe1dd85685307699b457cb87f221674
-
SSDEEP
196608:xSnj/mmV+GsH+bNueuJRAZVAOk5Vvz+tqE9AmEkzj:xSjumV+jHUodIjk5VzfE9Awzj
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-