General
-
Target
0c54f2f7bca44d750e64872e19f622aa
-
Size
679KB
-
Sample
231230-dgqgmagcal
-
MD5
0c54f2f7bca44d750e64872e19f622aa
-
SHA1
750412f913163e02cafd62d87e9d6a932d7a87e7
-
SHA256
ee0072bfa491f44ca7379ea10a57c49e384180abf7998f2f4a8b08d4fd24c176
-
SHA512
5ca95232b85faeec19e791ef5552047249869d4e0a71bbd729e0d987aa3d91875489b91c5e3af9f494ab681a0520801c54f3c741ff9339bb59594d2282e5f3ca
-
SSDEEP
12288:neZhU92Phc8yRRJsGeY7+M5kvJvfyLIurAXq08Vhdm:n52pkJsGeO+M5kyIuiqhho
Static task
static1
Behavioral task
behavioral1
Sample
0c54f2f7bca44d750e64872e19f622aa.exe
Resource
win7-20231215-en
Malware Config
Extracted
xloader
2.3
h388
americangrindstone.com
qdy6.club
bestsecretrecipes.info
11restoran.com
mrhashtags.com
theexecutivestudio.com
levilatte.com
indiantrio.com
msdhigh.com
spartandiesel.com
soccersundays.com
eliteworldcars.com
superlemon001.com
greenlight.school
kuryeforum.xyz
abc-322.com
campbellretreat.com
argonmode.net
movievilla.info
brateix.info
prepping.store
fitlife.kitchen
strongerpayment.com
shab761.com
ourplayhousesc.com
cooperstandard-isg.info
thorntonhillshousecleaning.com
createnoasis.com
diamondrepm.com
iyeurt9dweb.xyz
in-a-best-world.net
ccxtx.com
pydyc.com
alohamonstera.com
mellairan.com
kamadenumilk.com
etoilebusinessgroup.com
hhyum.com
dxm-int.com
isbelleamore.com
ptmw420tours.com
minldsrvlceacvtlvty.net
parkavenue-mgmt.com
adventuresofavi.com
wolfecraft.com
tbkefuzhongxin.com
688699.net
joaniebaby.tips
motherearth-infinity-nature.com
ghouliani.com
sckhsm.com
diypoolpaint.sydney
kizinvanie.com
viajesybecas.online
unitedold.com
wjlst.com
petrotee.com
mada-gerd.xyz
jaegerma.com
thefinkelman.com
kalfalikustalik.com
chaodinhduongngucocbeone.net
innofit.site
campaigncomprehensive.com
innercriticarchetypes.com
Targets
-
-
Target
0c54f2f7bca44d750e64872e19f622aa
-
Size
679KB
-
MD5
0c54f2f7bca44d750e64872e19f622aa
-
SHA1
750412f913163e02cafd62d87e9d6a932d7a87e7
-
SHA256
ee0072bfa491f44ca7379ea10a57c49e384180abf7998f2f4a8b08d4fd24c176
-
SHA512
5ca95232b85faeec19e791ef5552047249869d4e0a71bbd729e0d987aa3d91875489b91c5e3af9f494ab681a0520801c54f3c741ff9339bb59594d2282e5f3ca
-
SSDEEP
12288:neZhU92Phc8yRRJsGeY7+M5kvJvfyLIurAXq08Vhdm:n52pkJsGeO+M5kyIuiqhho
-
Xloader payload
-
Suspicious use of SetThreadContext
-