General
-
Target
Fatalservices.rar
-
Size
2.8MB
-
Sample
240603-awtaaaea38
-
MD5
ddebc77ef72c95f07d3dc0f0018e1c8e
-
SHA1
4ab642a7d73885f5702c1a10dfb20bf00c41c683
-
SHA256
c7c9658716d69b50009eb23459c62fa6305a1102f01e197a04cc82fba333290a
-
SHA512
92b97782d7dd45cbaa392bbcba97fde3370597d910fb2ac39feccaaa2e85db65c5118b9bc8c82d78b0944213565150491b708c7d4da4769a25af59d880d3bcd8
-
SSDEEP
49152:eYO6W/JsA0rUfVcFV3X5XB7JaGu2fkNyEoqSvJfQm4SG6qakPlQ39CvNZEFWjYPu:eYO6W/JH8UOFV3pBIX2fkQEeNQQG3Pms
Static task
static1
Behavioral task
behavioral1
Sample
Fatalservices.rar
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
Fatalservices.rar
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
Fatalservices.rar
-
Size
2.8MB
-
MD5
ddebc77ef72c95f07d3dc0f0018e1c8e
-
SHA1
4ab642a7d73885f5702c1a10dfb20bf00c41c683
-
SHA256
c7c9658716d69b50009eb23459c62fa6305a1102f01e197a04cc82fba333290a
-
SHA512
92b97782d7dd45cbaa392bbcba97fde3370597d910fb2ac39feccaaa2e85db65c5118b9bc8c82d78b0944213565150491b708c7d4da4769a25af59d880d3bcd8
-
SSDEEP
49152:eYO6W/JsA0rUfVcFV3X5XB7JaGu2fkNyEoqSvJfQm4SG6qakPlQ39CvNZEFWjYPu:eYO6W/JH8UOFV3pBIX2fkQEeNQQG3Pms
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-