General
-
Target
0aaaaf43fb4c771b8d676967c20e0f874f87842c49e8730ada78e8a1a5c284e4.img
-
Size
212KB
-
Sample
240921-bdkqvsxgpj
-
MD5
7a51e98f1dda8aec9f518981d52bb9a2
-
SHA1
bb61ba09a127ac653d12454451f23dce12669066
-
SHA256
0aaaaf43fb4c771b8d676967c20e0f874f87842c49e8730ada78e8a1a5c284e4
-
SHA512
81ff859bd36b7d8391a4194f385c8c11019fcc47cbe9e2caa2a5ad0546962988e144687e3a37353a68048c4db6a52cafc534fa75701429107ae446376e559d24
-
SSDEEP
3072:tlhERQSY9ydYJ8UQIe/ureJdkDXLLiMDdvk0:tlhERbYJzQIeWrezAhvk
Static task
static1
Behavioral task
behavioral1
Sample
Zamówienie 1043322_pdf.scr
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
Zamówienie 1043322_pdf.scr
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
Zamówienie 1043322_pdf.scr
-
Size
152KB
-
MD5
0b0c05d49526db92c8fb0b051649aadc
-
SHA1
6e199996c171523b45776c019e41827e2adcfa1a
-
SHA256
5fd0278bd6f9e2be0093585e64b18461de7f5669391a3540301caae60a7b962f
-
SHA512
6d071f028b95a03f590cad125a8d2ca35a0e7249bc1d0fa2dbc0527a5991d77b40d6f8c3a1dab3876dfaeb65818ee439c684af8a33b3a1d6220f2f58e5df0529
-
SSDEEP
3072:UlhERQSY9ydYJ8UQIe/ureJdkDXLLiMDdvk0:UlhERbYJzQIeWrezAhvk
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Loads dropped DLL
-
Accesses Microsoft Outlook profiles
-
Suspicious use of SetThreadContext
-