General
-
Target
8aff50e7ca55466a7adeeb48f973421fbbf98ec0d2c3e133325fffcef512033b
-
Size
4.6MB
-
Sample
240812-fqqj4a1cmf
-
MD5
e2a42238665237a610fc01bf93a036c0
-
SHA1
185ad7b607cb681886e892da0514c871780663fa
-
SHA256
8aff50e7ca55466a7adeeb48f973421fbbf98ec0d2c3e133325fffcef512033b
-
SHA512
9224638f0794358a802c1ea360457636cadbf7c7fd5226d920ca9c26f47bf50a2689c608b33d065a63b7c6f93fd006ae782b4214dbd95d77c133994f94e3d3de
-
SSDEEP
98304:NIBDxKfjcEtBdgSqMBYGx4FqWzWQw9y8rCKimem/Su+q/aQGTkIDdJ:OxsjZTqs78TSQkQKivmqfq/FGTkIDD
Static task
static1
Behavioral task
behavioral1
Sample
8aff50e7ca55466a7adeeb48f973421fbbf98ec0d2c3e133325fffcef512033b.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
8aff50e7ca55466a7adeeb48f973421fbbf98ec0d2c3e133325fffcef512033b.exe
Resource
win10-20240404-en
Malware Config
Targets
-
-
Target
8aff50e7ca55466a7adeeb48f973421fbbf98ec0d2c3e133325fffcef512033b
-
Size
4.6MB
-
MD5
e2a42238665237a610fc01bf93a036c0
-
SHA1
185ad7b607cb681886e892da0514c871780663fa
-
SHA256
8aff50e7ca55466a7adeeb48f973421fbbf98ec0d2c3e133325fffcef512033b
-
SHA512
9224638f0794358a802c1ea360457636cadbf7c7fd5226d920ca9c26f47bf50a2689c608b33d065a63b7c6f93fd006ae782b4214dbd95d77c133994f94e3d3de
-
SSDEEP
98304:NIBDxKfjcEtBdgSqMBYGx4FqWzWQw9y8rCKimem/Su+q/aQGTkIDdJ:OxsjZTqs78TSQkQKivmqfq/FGTkIDD
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-