General
-
Target
74c8670a8285e6783e6a5c44b43b7399078c36bd80a386f00f810da0e6a45533.exe
-
Size
194KB
-
Sample
240821-mh1hnatbjb
-
MD5
09874cbb134851ff3b971960916ce5bb
-
SHA1
42d32698f9513024f024eb6d1efcd9532ac1f622
-
SHA256
74c8670a8285e6783e6a5c44b43b7399078c36bd80a386f00f810da0e6a45533
-
SHA512
502189cc108e8c8034d957a9b6b32c29731f9a4d0811ffd147ab3ff516144521c77234c1d114694b070965c4300f36410b607828cb961c56649e04cdd697ee05
-
SSDEEP
3072:+ELHCmCilCQ9khN5/empqIDq2mKtku4V6TQX6jk8Z/lFcXqR6U:+ELIZQ9kz5/em/DqxKSgTQY3qtU
Static task
static1
Behavioral task
behavioral1
Sample
74c8670a8285e6783e6a5c44b43b7399078c36bd80a386f00f810da0e6a45533.exe
Resource
win7-20240704-en
Malware Config
Extracted
zloader
r1
r1
https://notsweets.net/LKhwojehDgwegSDG/gateJKjdsh.php
https://olpons.com/LKhwojehDgwegSDG/gateJKjdsh.php
https://karamelliar.org/LKhwojehDgwegSDG/gateJKjdsh.php
https://dogrunn.com/LKhwojehDgwegSDG/gateJKjdsh.php
https://azoraz.net/LKhwojehDgwegSDG/gateJKjdsh.php
-
build_id
125
Targets
-
-
Target
74c8670a8285e6783e6a5c44b43b7399078c36bd80a386f00f810da0e6a45533.exe
-
Size
194KB
-
MD5
09874cbb134851ff3b971960916ce5bb
-
SHA1
42d32698f9513024f024eb6d1efcd9532ac1f622
-
SHA256
74c8670a8285e6783e6a5c44b43b7399078c36bd80a386f00f810da0e6a45533
-
SHA512
502189cc108e8c8034d957a9b6b32c29731f9a4d0811ffd147ab3ff516144521c77234c1d114694b070965c4300f36410b607828cb961c56649e04cdd697ee05
-
SSDEEP
3072:+ELHCmCilCQ9khN5/empqIDq2mKtku4V6TQX6jk8Z/lFcXqR6U:+ELIZQ9kz5/em/DqxKSgTQY3qtU
-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Suspicious use of SetThreadContext
-