General
-
Target
Vegas 22 Installer.exe
-
Size
17.8MB
-
Sample
240527-ds7v2sfc83
-
MD5
2269f966fac6608689b27c8fd0f8f4b6
-
SHA1
72b19b33010b5d130b4141aa3be69d69981155bb
-
SHA256
d54d3491570941698ac7e29ceedc611331e1b42b802ff53b19ff81fe2d3bd268
-
SHA512
10d76dffd87b08f141f7aaa925d5da68df181bb32ee877b888f1649bb84af1f98bc0fcedafc089c4c35b0264bc8f93d4604fd651779cb8595e0b799f6066d55b
-
SSDEEP
393216:XqPnLFXlrPmQ8DOETgsvfG3ghjzvE2PipK5aSq:aPLFXNOQhE8QjY+IKM
Behavioral task
behavioral1
Sample
Vegas 22 Installer.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
Vegas 22 Installer.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
Vegas 22 Installer.exe
-
Size
17.8MB
-
MD5
2269f966fac6608689b27c8fd0f8f4b6
-
SHA1
72b19b33010b5d130b4141aa3be69d69981155bb
-
SHA256
d54d3491570941698ac7e29ceedc611331e1b42b802ff53b19ff81fe2d3bd268
-
SHA512
10d76dffd87b08f141f7aaa925d5da68df181bb32ee877b888f1649bb84af1f98bc0fcedafc089c4c35b0264bc8f93d4604fd651779cb8595e0b799f6066d55b
-
SSDEEP
393216:XqPnLFXlrPmQ8DOETgsvfG3ghjzvE2PipK5aSq:aPLFXNOQhE8QjY+IKM
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-