General
-
Target
59051aeced793e477a13ce4f6ef1313c
-
Size
37KB
-
Sample
240113-sf9lfabcdm
-
MD5
59051aeced793e477a13ce4f6ef1313c
-
SHA1
1b52875eb7796037145089c9b2868882b549d7c7
-
SHA256
ff43602a591f2130c3c8fa71922a31abc01641e7ff048bf2e08e3d3d59c24253
-
SHA512
76c4d51ec8d77186598821b19ea371b72d706be8127a3643c2660a8608822624f0c2099b23112be055586514c5ef27e72f0e2340206f9674c71360320e50c4ad
-
SSDEEP
768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMy8:edILlknNU4rOobbLyn8
Malware Config
Targets
-
-
Target
59051aeced793e477a13ce4f6ef1313c
-
Size
37KB
-
MD5
59051aeced793e477a13ce4f6ef1313c
-
SHA1
1b52875eb7796037145089c9b2868882b549d7c7
-
SHA256
ff43602a591f2130c3c8fa71922a31abc01641e7ff048bf2e08e3d3d59c24253
-
SHA512
76c4d51ec8d77186598821b19ea371b72d706be8127a3643c2660a8608822624f0c2099b23112be055586514c5ef27e72f0e2340206f9674c71360320e50c4ad
-
SSDEEP
768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMy8:edILlknNU4rOobbLyn8
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Suspicious use of SetThreadContext
-