General
-
Target
454be1f15b87f6ca55ad6b5438fa262d83dc041e6bd40b6aceca92f9e0936be5.exe
-
Size
8.8MB
-
Sample
240527-rs2kxsgf74
-
MD5
abe4d6f2f3fc583003b70c8c0e24e268
-
SHA1
9090db13cf2cb3e8036b2911c0124b6de6d1e3a0
-
SHA256
454be1f15b87f6ca55ad6b5438fa262d83dc041e6bd40b6aceca92f9e0936be5
-
SHA512
1dac0f0d1642061642f4e945a4bb8caf5b19d631bf6209f89257d439be059df89282962f9a3dd0f44c8859f300d1206c6996cf1b9e8bc63c5ed6e321f207b29a
-
SSDEEP
49152:oA1RVfVkJix2rb/TXvO90d7HjmAFd4A64nsfJCzGoi5Upu19lpH5pIm/Y3dNdvns:D2JisGW097Im/Y43uLw7nvE7Qwuiq9
Static task
static1
Behavioral task
behavioral1
Sample
454be1f15b87f6ca55ad6b5438fa262d83dc041e6bd40b6aceca92f9e0936be5.exe
Resource
win7-20240221-en
Malware Config
Extracted
lumma
https://questionconservawuts.shop/api
https://museumtespaceorsp.shop/api
https://buttockdecarderwiso.shop/api
https://averageaattractiionsl.shop/api
https://femininiespywageg.shop/api
https://employhabragaomlsp.shop/api
https://stalfbaclcalorieeis.shop/api
https://civilianurinedtsraov.shop/api
https://roomabolishsnifftwk.shop/api
Targets
-
-
Target
454be1f15b87f6ca55ad6b5438fa262d83dc041e6bd40b6aceca92f9e0936be5.exe
-
Size
8.8MB
-
MD5
abe4d6f2f3fc583003b70c8c0e24e268
-
SHA1
9090db13cf2cb3e8036b2911c0124b6de6d1e3a0
-
SHA256
454be1f15b87f6ca55ad6b5438fa262d83dc041e6bd40b6aceca92f9e0936be5
-
SHA512
1dac0f0d1642061642f4e945a4bb8caf5b19d631bf6209f89257d439be059df89282962f9a3dd0f44c8859f300d1206c6996cf1b9e8bc63c5ed6e321f207b29a
-
SSDEEP
49152:oA1RVfVkJix2rb/TXvO90d7HjmAFd4A64nsfJCzGoi5Upu19lpH5pIm/Y3dNdvns:D2JisGW097Im/Y43uLw7nvE7Qwuiq9
-
Suspicious use of SetThreadContext
-