General
-
Target
8ae1b1ba12d123f1aad10fff304043a549a53d29e27d3d823ac36025e03b1355
-
Size
4.6MB
-
Sample
240523-wpqrgabc6t
-
MD5
9350d1766478453a3ad085de9cd303f5
-
SHA1
62d9536346673aa3e3f36f8bbab79d3437d0abb2
-
SHA256
8ae1b1ba12d123f1aad10fff304043a549a53d29e27d3d823ac36025e03b1355
-
SHA512
56e66bd925961056744f71415f12a3d9b63cc48dc718c7e8efdda8042295a8551e68db3d7d028f908f7be39e349c0f70fee6ad38e71f8ac2ec41dd1c369175c9
-
SSDEEP
98304:mRyKq0t+IYZJMyRUfhK67eUG3N6DHvtKn4Ai26/+uDHzhHHQqOmL4b16:CX+IYfMyihKXVN6jvyEWSdHHxP4b16
Static task
static1
Behavioral task
behavioral1
Sample
8ae1b1ba12d123f1aad10fff304043a549a53d29e27d3d823ac36025e03b1355.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral2
Sample
8ae1b1ba12d123f1aad10fff304043a549a53d29e27d3d823ac36025e03b1355.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
8ae1b1ba12d123f1aad10fff304043a549a53d29e27d3d823ac36025e03b1355
-
Size
4.6MB
-
MD5
9350d1766478453a3ad085de9cd303f5
-
SHA1
62d9536346673aa3e3f36f8bbab79d3437d0abb2
-
SHA256
8ae1b1ba12d123f1aad10fff304043a549a53d29e27d3d823ac36025e03b1355
-
SHA512
56e66bd925961056744f71415f12a3d9b63cc48dc718c7e8efdda8042295a8551e68db3d7d028f908f7be39e349c0f70fee6ad38e71f8ac2ec41dd1c369175c9
-
SSDEEP
98304:mRyKq0t+IYZJMyRUfhK67eUG3N6DHvtKn4Ai26/+uDHzhHHQqOmL4b16:CX+IYfMyihKXVN6jvyEWSdHHxP4b16
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-