General
-
Target
ConsoleApplication2.exe
-
Size
4.4MB
-
Sample
240608-s3d32sch9x
-
MD5
5bb3ce4d98455db9b26b3656ce8cd9d4
-
SHA1
f5c79c2c64f68c917c5a28366046dec5bf80fd51
-
SHA256
f0e16c83be9d6462dd5b012e24d28d2e6fab090d89a706c26002125ff4a32d51
-
SHA512
68a0fda3222147c11f498f4304575407988c18544b3c9e5505516795f1d12499cea769b32116b047f0cac9039c497bf9d85247cb80446cbd33f2ca74d3cc5bbe
-
SSDEEP
49152:A9vbVK2ZCrRVnNPMCzTGN3+ENECHh93VDxuk0hU94vms0gHxlPZKDPqPSz8W5lK8:A9vbVK2ZCHOKCHgLPbPKl
Malware Config
Targets
-
-
Target
ConsoleApplication2.exe
-
Size
4.4MB
-
MD5
5bb3ce4d98455db9b26b3656ce8cd9d4
-
SHA1
f5c79c2c64f68c917c5a28366046dec5bf80fd51
-
SHA256
f0e16c83be9d6462dd5b012e24d28d2e6fab090d89a706c26002125ff4a32d51
-
SHA512
68a0fda3222147c11f498f4304575407988c18544b3c9e5505516795f1d12499cea769b32116b047f0cac9039c497bf9d85247cb80446cbd33f2ca74d3cc5bbe
-
SSDEEP
49152:A9vbVK2ZCrRVnNPMCzTGN3+ENECHh93VDxuk0hU94vms0gHxlPZKDPqPSz8W5lK8:A9vbVK2ZCHOKCHgLPbPKl
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-