General
-
Target
TSPComboExtractor.exe
-
Size
1.7MB
-
Sample
240726-bcn2wsyhlc
-
MD5
5eb2e5c621b6f18978a62d7bba94397d
-
SHA1
abb47cf8ec2823cd99d3087c2bc34a0f5122c0a6
-
SHA256
5d7815f717d121179818ab39dd8264e6b7f79524568db6415f659cafd5f0416c
-
SHA512
71875682964958a3455c886af1ee5c92f47f57314443c1f0d6f959756a2e8ec481039323dbcbd3f1391d5893a5954bc71e73635f364f191140c457a95f36287e
-
SSDEEP
24576:ZQ9u98/1Xx+nuiSgGKTxpI8KEXyYLjo9wWr+NA6GQoj1F2ZaIvuonX60:8ITpKbQjNWrf6GQy7+97q0
Malware Config
Targets
-
-
Target
TSPComboExtractor.exe
-
Size
1.7MB
-
MD5
5eb2e5c621b6f18978a62d7bba94397d
-
SHA1
abb47cf8ec2823cd99d3087c2bc34a0f5122c0a6
-
SHA256
5d7815f717d121179818ab39dd8264e6b7f79524568db6415f659cafd5f0416c
-
SHA512
71875682964958a3455c886af1ee5c92f47f57314443c1f0d6f959756a2e8ec481039323dbcbd3f1391d5893a5954bc71e73635f364f191140c457a95f36287e
-
SSDEEP
24576:ZQ9u98/1Xx+nuiSgGKTxpI8KEXyYLjo9wWr+NA6GQoj1F2ZaIvuonX60:8ITpKbQjNWrf6GQy7+97q0
Score7/10-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-