General
-
Target
http_proxies.txt
-
Size
31KB
-
Sample
240601-x35cfsdb65
-
MD5
60768f98fe4672ad16d478a7233e55a0
-
SHA1
21516620c9651fd574316a1e9e8fb771976ac4c1
-
SHA256
ee6d4b40dcf64a76cd6efbe6b2e7770777a17803848cd7404ef9058bed405488
-
SHA512
80dba4b50b512a0273bcae74bf2ace824716d8aaf14a0fc136ecb355776478fab0a839f9de56e4203caebb57d90ec8f82cd980926defe582dbf88a7a01259bf5
-
SSDEEP
192:FUf6yO5ysDG5DDmzZ/UAEg9ELH1z94dLfzhiC9Cs1dyRiFL5V8xDN53zduyNvxl0:AUPDG91GyVMGIqyQrEgLuxpxRBFt7mg
Static task
static1
Behavioral task
behavioral1
Sample
http_proxies.txt
Resource
win11-20240426-en
Malware Config
Targets
-
-
Target
http_proxies.txt
-
Size
31KB
-
MD5
60768f98fe4672ad16d478a7233e55a0
-
SHA1
21516620c9651fd574316a1e9e8fb771976ac4c1
-
SHA256
ee6d4b40dcf64a76cd6efbe6b2e7770777a17803848cd7404ef9058bed405488
-
SHA512
80dba4b50b512a0273bcae74bf2ace824716d8aaf14a0fc136ecb355776478fab0a839f9de56e4203caebb57d90ec8f82cd980926defe582dbf88a7a01259bf5
-
SSDEEP
192:FUf6yO5ysDG5DDmzZ/UAEg9ELH1z94dLfzhiC9Cs1dyRiFL5V8xDN53zduyNvxl0:AUPDG91GyVMGIqyQrEgLuxpxRBFt7mg
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-