General
-
Target
4a672122c160252129e3bfad6ab6bdfc
-
Size
506KB
-
Sample
240108-erjx9sbhb3
-
MD5
4a672122c160252129e3bfad6ab6bdfc
-
SHA1
2a99301ca66c07bb2b9669b724413d15a551a960
-
SHA256
e23ddd92df03093b86a9aa0aedfa3ce716fb4f16d9b59392ffa7a3d9e0fcf153
-
SHA512
dc1c54994924e233115aaa959285b95f07c6af56439e63965ebee2a72f2dd0f757945c5197a4124e1263b77da7b136abfc974db35b6623d76d2eb3ec3f7d9e57
-
SSDEEP
12288:FRYutA1GB6YFk6P5b1/kpoXbQPQJbEWKLVbG:DYuK1GEbsR6zgduG
Static task
static1
Behavioral task
behavioral1
Sample
4a672122c160252129e3bfad6ab6bdfc.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
4a672122c160252129e3bfad6ab6bdfc.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
4a672122c160252129e3bfad6ab6bdfc
-
Size
506KB
-
MD5
4a672122c160252129e3bfad6ab6bdfc
-
SHA1
2a99301ca66c07bb2b9669b724413d15a551a960
-
SHA256
e23ddd92df03093b86a9aa0aedfa3ce716fb4f16d9b59392ffa7a3d9e0fcf153
-
SHA512
dc1c54994924e233115aaa959285b95f07c6af56439e63965ebee2a72f2dd0f757945c5197a4124e1263b77da7b136abfc974db35b6623d76d2eb3ec3f7d9e57
-
SSDEEP
12288:FRYutA1GB6YFk6P5b1/kpoXbQPQJbEWKLVbG:DYuK1GEbsR6zgduG
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-