General
-
Target
28271a653c234b312cefd6e8c0a06756b7c5c3f75784904bf18dc5e6a34ef10f
-
Size
4.5MB
-
Sample
240811-bg5v7ssaqa
-
MD5
0350b7eceb388d5857072657d06abb54
-
SHA1
761559756bd2e0c1104f50af23cdcf2115206433
-
SHA256
28271a653c234b312cefd6e8c0a06756b7c5c3f75784904bf18dc5e6a34ef10f
-
SHA512
954d7be4e0ac40d298df91a1ec0aeefe7d216e75d827ad59ff9dcd7bc6366d33039acc873809e841f77ccedfe4d16edf761271999df0a17b2f705d46d8554478
-
SSDEEP
98304:NtJ3zP3R1ksHOfUYNSzgt1GD4gYVjujREKDqWGpkX3g/36gfjdJ:FDP3/FHP2gOGMlVqFEuq6X3gvd7D
Static task
static1
Behavioral task
behavioral1
Sample
28271a653c234b312cefd6e8c0a06756b7c5c3f75784904bf18dc5e6a34ef10f.exe
Resource
win10v2004-20240802-en
Behavioral task
behavioral2
Sample
28271a653c234b312cefd6e8c0a06756b7c5c3f75784904bf18dc5e6a34ef10f.exe
Resource
win11-20240802-en
Malware Config
Targets
-
-
Target
28271a653c234b312cefd6e8c0a06756b7c5c3f75784904bf18dc5e6a34ef10f
-
Size
4.5MB
-
MD5
0350b7eceb388d5857072657d06abb54
-
SHA1
761559756bd2e0c1104f50af23cdcf2115206433
-
SHA256
28271a653c234b312cefd6e8c0a06756b7c5c3f75784904bf18dc5e6a34ef10f
-
SHA512
954d7be4e0ac40d298df91a1ec0aeefe7d216e75d827ad59ff9dcd7bc6366d33039acc873809e841f77ccedfe4d16edf761271999df0a17b2f705d46d8554478
-
SSDEEP
98304:NtJ3zP3R1ksHOfUYNSzgt1GD4gYVjujREKDqWGpkX3g/36gfjdJ:FDP3/FHP2gOGMlVqFEuq6X3gvd7D
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-