General
-
Target
eulen.rar
-
Size
5.8MB
-
Sample
240624-ypf85stbrl
-
MD5
64b3795465cfd18676f2e5651d7c4329
-
SHA1
4b2147325e3a39ec45d4455adf2981e86c0bcb76
-
SHA256
3c85a95c5c0b4e9e074097fed6c876d3c1213b2162c3c8e9b4db4da0237349d0
-
SHA512
6c3fda5812eb6f5d67d50469d8b974cb9cd807bc0826f906d5b4acf8aa9f8307058b75df73eceea1a20b24f2227d62d66af3bb06e5cd595f74850a2f0d71ae53
-
SSDEEP
98304:CvwszY5HViN8OeEwUHv7ccUNxaYBXZptiqC80sZG5y7fTfPqgI4+zjw:CvJ8OeRUPgcaxlXZTiq1Zs8vQT/w
Malware Config
Targets
-
-
Target
eulen.exe
-
Size
6.0MB
-
MD5
5dc6ac83b1983b3dabdd12b6a6bd6857
-
SHA1
70b91702458c16cc68f4c6034a1e5f4d981319b2
-
SHA256
cbd322673bf052c689ddc6e966d1e51cc0a53fc4bd058e43607531cfab577342
-
SHA512
79e6d751fe3af68d991d9bab37743a61787d941a87924f76142221fe77c9aa1c68fceb6b62fc71103fae05116b6ba3a2a56c4adb6efb71757e5bdaeeee586ea9
-
SSDEEP
98304:4xEtdFBgyVamaHl3Ne4i3gmtfXJOLhx9fZAzDJ4wzQgsRuGK4RjBM5Jq3rsa9:4QFCeN/FJMIDJf0gsAGK4Rju5Ba9
-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Loads dropped DLL
-