General
-
Target
Spotify 1.0.0 version.exe
-
Size
7.7MB
-
Sample
240624-ylvx5atanl
-
MD5
e16b75499a7aa73051e26c819c1c297a
-
SHA1
6bd1bfd19abddf6fd4192ef0e9bbde5d2d462f3d
-
SHA256
bb58690c9f4fd1d5d1ac7f592117fd30f599430457e217542cd037f06af04c2c
-
SHA512
675eb69262b0adccc6e6606bd8893b9ca0048ae2a1284bb2d182592cec1ca4ef31094f2c421184a826cdfbd43b2255c2a01b8e5f6fee83866f221fc2a1bb2f82
-
SSDEEP
98304:m+DjWM8JEbh1rsRamaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfmdx/WbeRGYKJJt:m+0CeNTfm/pf+xk4de/lRGtrbWOjgWy
Behavioral task
behavioral1
Sample
Spotify 1.0.0 version.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
Spotify 1.0.0 version.exe
-
Size
7.7MB
-
MD5
e16b75499a7aa73051e26c819c1c297a
-
SHA1
6bd1bfd19abddf6fd4192ef0e9bbde5d2d462f3d
-
SHA256
bb58690c9f4fd1d5d1ac7f592117fd30f599430457e217542cd037f06af04c2c
-
SHA512
675eb69262b0adccc6e6606bd8893b9ca0048ae2a1284bb2d182592cec1ca4ef31094f2c421184a826cdfbd43b2255c2a01b8e5f6fee83866f221fc2a1bb2f82
-
SSDEEP
98304:m+DjWM8JEbh1rsRamaHl3Ne4i3Tf2PkOpfW9hZMMoVmkzhxIdfmdx/WbeRGYKJJt:m+0CeNTfm/pf+xk4de/lRGtrbWOjgWy
-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-