General
-
Target
https://theipfire.co/a
-
Sample
240627-2zzd9awhjh
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
https://theipfire.co/a
Resource
win10v2004-20240611-en
windows10-2004-x64
17 signatures
150 seconds
Malware Config
Targets
-
-
Target
https://theipfire.co/a
Score10/10-
Detects HijackLoader (aka IDAT Loader)
-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Legitimate hosting services abused for malware hosting/C2
-
Probable phishing domain
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-