General
-
Target
dd3e22facdf8d4f9f26e5b8fb89a7692
-
Size
358KB
-
Sample
240325-e7ctwsgb76
-
MD5
dd3e22facdf8d4f9f26e5b8fb89a7692
-
SHA1
205f2edb208eb0034d677f6376c174d1bc0976f2
-
SHA256
a3405b8eb30c6ecea12c142c37c97f88c404fd755dfb5c0e15cd5551a7c78797
-
SHA512
4f491a3846a107c8d907f5309f8ef16e45e801ac4fa9f62b9701066c55ce03f5f46132f75ec542869b14729fca45fcc70b9908b4d2204568f0aaa76b7055b5e1
-
SSDEEP
6144:78A7E/PzpKXRM5gsmIFTCndcpoPtKy6801lqKf0hP:78sgpfmIVia2KvlnfgP
Static task
static1
Behavioral task
behavioral1
Sample
dd3e22facdf8d4f9f26e5b8fb89a7692.dll
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
dd3e22facdf8d4f9f26e5b8fb89a7692.dll
Resource
win10v2004-20240226-en
Malware Config
Extracted
zloader
googleaktualizacija
googleaktualizacija2
https://iqowijsdakm.com/gate.php
https://wiewjdmkfjn.com/gate.php
https://dksaoidiakjd.com/gate.php
https://iweuiqjdakjd.com/gate.php
https://yuidskadjna.com/gate.php
https://olksmadnbdj.com/gate.php
https://odsakmdfnbs.com/gate.php
https://odsakjmdnhsaj.com/gate.php
https://odjdnhsaj.com/gate.php
https://odoishsaj.com/gate.php
-
build_id
156
Targets
-
-
Target
dd3e22facdf8d4f9f26e5b8fb89a7692
-
Size
358KB
-
MD5
dd3e22facdf8d4f9f26e5b8fb89a7692
-
SHA1
205f2edb208eb0034d677f6376c174d1bc0976f2
-
SHA256
a3405b8eb30c6ecea12c142c37c97f88c404fd755dfb5c0e15cd5551a7c78797
-
SHA512
4f491a3846a107c8d907f5309f8ef16e45e801ac4fa9f62b9701066c55ce03f5f46132f75ec542869b14729fca45fcc70b9908b4d2204568f0aaa76b7055b5e1
-
SSDEEP
6144:78A7E/PzpKXRM5gsmIFTCndcpoPtKy6801lqKf0hP:78sgpfmIVia2KvlnfgP
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-