General
-
Target
0beec91724cb2c7dbaf48663f36e93a5
-
Size
176KB
-
Sample
231224-w5bx9agchr
-
MD5
0beec91724cb2c7dbaf48663f36e93a5
-
SHA1
670b901dd4160a46447c18634a85375afcb2685e
-
SHA256
e037ce3f826b96824cdbb3f8ea5948f1e5f73c49c6e27c8a48216a118e4951e2
-
SHA512
e8fdd298f0f337d607d6307019478f891f2aa0f67121d4f6bed4da247410d16d962c4a5f536a0a83e075ad64dd00db052e1f39e7e8ed39432e4ba3c726191768
-
SSDEEP
3072:xz9Zdj4IvwQqmwvUeOt+vvEOHUCHmfSmOUBISpIPW7ljOlyrvBG55NZ6NMCZ:n0yomwVBvvE+GfS/ExhljJvQt0MC
Malware Config
Targets
-
-
Target
0beec91724cb2c7dbaf48663f36e93a5
-
Size
176KB
-
MD5
0beec91724cb2c7dbaf48663f36e93a5
-
SHA1
670b901dd4160a46447c18634a85375afcb2685e
-
SHA256
e037ce3f826b96824cdbb3f8ea5948f1e5f73c49c6e27c8a48216a118e4951e2
-
SHA512
e8fdd298f0f337d607d6307019478f891f2aa0f67121d4f6bed4da247410d16d962c4a5f536a0a83e075ad64dd00db052e1f39e7e8ed39432e4ba3c726191768
-
SSDEEP
3072:xz9Zdj4IvwQqmwvUeOt+vvEOHUCHmfSmOUBISpIPW7ljOlyrvBG55NZ6NMCZ:n0yomwVBvvE+GfS/ExhljJvQt0MC
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-