General
-
Target
c43535d87c0a2a1d87a09d6835c0c68d3033dbaa5ff89a67ebe6886926b873b3.exe
-
Size
3.9MB
-
Sample
240802-cs7dvavelb
-
MD5
d9c457542a9c97c036b2b77fdfbfb958
-
SHA1
811d630206b9d2fa79ba0167023caf8685af0787
-
SHA256
c43535d87c0a2a1d87a09d6835c0c68d3033dbaa5ff89a67ebe6886926b873b3
-
SHA512
1538a299f8f0f4c614c1f16433cc1af75508b30e04e4e49ee176a9d6d2974627ae8a23a2c4f03cda117c455c7918f12735a9214313b2c0e6177099b9b16eaf89
-
SSDEEP
98304:NFzxRg8s4/RejvOnt1//jiX5HPSgpNDjiRL0QdtWcNnZcd4:Tzx7snOt1XjilK+5+RLjd4cNZca
Static task
static1
Behavioral task
behavioral1
Sample
c43535d87c0a2a1d87a09d6835c0c68d3033dbaa5ff89a67ebe6886926b873b3.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
c43535d87c0a2a1d87a09d6835c0c68d3033dbaa5ff89a67ebe6886926b873b3.exe
Resource
win10v2004-20240730-en
Malware Config
Targets
-
-
Target
c43535d87c0a2a1d87a09d6835c0c68d3033dbaa5ff89a67ebe6886926b873b3.exe
-
Size
3.9MB
-
MD5
d9c457542a9c97c036b2b77fdfbfb958
-
SHA1
811d630206b9d2fa79ba0167023caf8685af0787
-
SHA256
c43535d87c0a2a1d87a09d6835c0c68d3033dbaa5ff89a67ebe6886926b873b3
-
SHA512
1538a299f8f0f4c614c1f16433cc1af75508b30e04e4e49ee176a9d6d2974627ae8a23a2c4f03cda117c455c7918f12735a9214313b2c0e6177099b9b16eaf89
-
SSDEEP
98304:NFzxRg8s4/RejvOnt1//jiX5HPSgpNDjiRL0QdtWcNnZcd4:Tzx7snOt1XjilK+5+RLjd4cNZca
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-