General
-
Target
bc00fef073d78e021e5273735cd8a75b55261a7564a01af944ed35f4513aadf9
-
Size
2.8MB
-
Sample
240524-br9xxagd42
-
MD5
63ba5ec400ebbe6af65441f442652faa
-
SHA1
3b8807f8124c0e0d8c8cd816f9a7bc30476fbf5c
-
SHA256
bc00fef073d78e021e5273735cd8a75b55261a7564a01af944ed35f4513aadf9
-
SHA512
e240e9e07d88908057bba587e32ef1499d0c2d235eed61f1e996ce8959e1c323068ad483a96a7010ea0050440e12a0d82782e79baa186e880e4727452f3a4baf
-
SSDEEP
49152:2mVZpRE5HFjH4MLMmcX17+kSmn75+dEsgY5OK:fgvFcXV3cJ5
Static task
static1
Behavioral task
behavioral1
Sample
bc00fef073d78e021e5273735cd8a75b55261a7564a01af944ed35f4513aadf9.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
bc00fef073d78e021e5273735cd8a75b55261a7564a01af944ed35f4513aadf9.exe
Resource
win10-20240404-en
Malware Config
Targets
-
-
Target
bc00fef073d78e021e5273735cd8a75b55261a7564a01af944ed35f4513aadf9
-
Size
2.8MB
-
MD5
63ba5ec400ebbe6af65441f442652faa
-
SHA1
3b8807f8124c0e0d8c8cd816f9a7bc30476fbf5c
-
SHA256
bc00fef073d78e021e5273735cd8a75b55261a7564a01af944ed35f4513aadf9
-
SHA512
e240e9e07d88908057bba587e32ef1499d0c2d235eed61f1e996ce8959e1c323068ad483a96a7010ea0050440e12a0d82782e79baa186e880e4727452f3a4baf
-
SSDEEP
49152:2mVZpRE5HFjH4MLMmcX17+kSmn75+dEsgY5OK:fgvFcXV3cJ5
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-