General
-
Target
funny.exe
-
Size
79.2MB
-
Sample
240607-cp3lgshb36
-
MD5
b6cb07076d9be8d440134557f3ccd3b8
-
SHA1
9952c594b090974254a17ae62eba4f8329bdfd9b
-
SHA256
7f9828212fd796522ff4e0a61a7d917c812e0260f5058d79ba6aa7ba29999a29
-
SHA512
aea51f39d64b9007d43100be2bcb8407a2428bef1617e25401b4640cf97ae6d291e0b786c2783f96ffa9f7c811d35bc82485b924a84c9c8741ca30fbd80fe728
-
SSDEEP
1572864:w9XG+DVNXukNqzb9CLmSCU/+dyOsJI7GjxyVxUtMIDkDdWwFow8tYUlj5FEa:OddukNqLSC++dyddVtFWpo5j5C
Behavioral task
behavioral1
Sample
funny.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
funny.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral3
Sample
funny.pyc
Resource
win7-20240508-en
Behavioral task
behavioral4
Sample
funny.pyc
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
funny.exe
-
Size
79.2MB
-
MD5
b6cb07076d9be8d440134557f3ccd3b8
-
SHA1
9952c594b090974254a17ae62eba4f8329bdfd9b
-
SHA256
7f9828212fd796522ff4e0a61a7d917c812e0260f5058d79ba6aa7ba29999a29
-
SHA512
aea51f39d64b9007d43100be2bcb8407a2428bef1617e25401b4640cf97ae6d291e0b786c2783f96ffa9f7c811d35bc82485b924a84c9c8741ca30fbd80fe728
-
SSDEEP
1572864:w9XG+DVNXukNqzb9CLmSCU/+dyOsJI7GjxyVxUtMIDkDdWwFow8tYUlj5FEa:OddukNqLSC++dyddVtFWpo5j5C
Score7/10-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
-
-
Target
funny.pyc
-
Size
3KB
-
MD5
ff13c50e44ca354475fae748585c74a6
-
SHA1
6eea2cb09d5574c7ce557cd5101bcf8ed990f2a9
-
SHA256
141a1d3bd7b89c66d6937254d953928c4e4f2b8bae624c8dc5a63c7ceab2a2e8
-
SHA512
634dfb978322511203ac82471307dce0eb57f2705853a4af2cbe0a13b8157c478b30e179981d63287edd51833acd2083a3f88c4c55c76985294eec0dd88a702d
Score3/10 -