General
-
Target
Shipfarm.exe
-
Size
65.0MB
-
Sample
240628-zwjtaasbje
-
MD5
1a2228e5915c1456a0f1234396c3703b
-
SHA1
40dbcb8124c7156bcde596d7071d0553d308c1a2
-
SHA256
74c0a7c304c6ada51b15527f5f8df034a45f566d93cbdc4940698f36845e43af
-
SHA512
1019bb9029a4970d030a84c7c7f3e63334dc5913ed79861472c8345cc59f7052f7a742a436ac6dfb7a2b490c4dacf4c3d39a17e2cc7079d7f74786d4c78b8005
-
SSDEEP
1572864:PRW1wkv1Tz5g/qPz9QIrQFd2y8IyFNOXWxtQSN3iIJ2qHWB75iVXRWnQM:PU1wq35gSmCQFdt8vFcKCoJ2qHO5iVh7
Behavioral task
behavioral1
Sample
Shipfarm.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
Shipfarm.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
Shipfarm.exe
-
Size
65.0MB
-
MD5
1a2228e5915c1456a0f1234396c3703b
-
SHA1
40dbcb8124c7156bcde596d7071d0553d308c1a2
-
SHA256
74c0a7c304c6ada51b15527f5f8df034a45f566d93cbdc4940698f36845e43af
-
SHA512
1019bb9029a4970d030a84c7c7f3e63334dc5913ed79861472c8345cc59f7052f7a742a436ac6dfb7a2b490c4dacf4c3d39a17e2cc7079d7f74786d4c78b8005
-
SSDEEP
1572864:PRW1wkv1Tz5g/qPz9QIrQFd2y8IyFNOXWxtQSN3iIJ2qHWB75iVXRWnQM:PU1wq35gSmCQFdt8vFcKCoJ2qHO5iVh7
Score7/10-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-