General
-
Target
8686fafede5fe7c30d6fe69dc42fa654
-
Size
706KB
-
Sample
240201-ldngvshbb5
-
MD5
8686fafede5fe7c30d6fe69dc42fa654
-
SHA1
623f86282c1e1d5b04beb7a91a2ac83e60bb0b34
-
SHA256
db22f8a0e715eacf4b2c0341023da4d9e3728a84429518af2ab45ae112dd425a
-
SHA512
730d84b289e8331de4c26bcca646d6040db06bb494a45a9cb2f1174f287f1c1053151b45111cb8195478b51837cb66b8ae7e449f9814fef4a43f27bacb518e72
-
SSDEEP
6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOTm02:BOARq02
Static task
static1
Behavioral task
behavioral1
Sample
8686fafede5fe7c30d6fe69dc42fa654.ps1
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
8686fafede5fe7c30d6fe69dc42fa654.ps1
Resource
win10v2004-20231222-en
Malware Config
Extracted
oski
103.99.1.60/we/king/
Targets
-
-
Target
8686fafede5fe7c30d6fe69dc42fa654
-
Size
706KB
-
MD5
8686fafede5fe7c30d6fe69dc42fa654
-
SHA1
623f86282c1e1d5b04beb7a91a2ac83e60bb0b34
-
SHA256
db22f8a0e715eacf4b2c0341023da4d9e3728a84429518af2ab45ae112dd425a
-
SHA512
730d84b289e8331de4c26bcca646d6040db06bb494a45a9cb2f1174f287f1c1053151b45111cb8195478b51837cb66b8ae7e449f9814fef4a43f27bacb518e72
-
SSDEEP
6144:raJpHs+ApelD0TpSXKFlECflUZdAMr9LXoFNihdhUNK/16dBzMeiuoC6GSOTm02:BOARq02
Score10/10-
Suspicious use of SetThreadContext
-