General
-
Target
6eb42090e0c90a6dc126df7c56f84eb297a6dc6e0ed885263049a7587a626339.zip
-
Size
2.4MB
-
Sample
241213-c3hhgawke1
-
MD5
5f74e8626dbc207a6665a09aa5ae80fe
-
SHA1
4f0c48cad82880d4fa07da7ab69226ea05596335
-
SHA256
6eb42090e0c90a6dc126df7c56f84eb297a6dc6e0ed885263049a7587a626339
-
SHA512
6ac35f714deceae28a42f0d306f05db210678e80b4aba45251b405315aa8d6bb3a499bd3b445c8f652cdbd3edc4d2fb1cc73474f083417c91d9b2aeeed526eda
-
SSDEEP
49152:WtDcaN0YmUhCEb7IuIQXlHCUJR4X/R7DIPONjviPFJFWt8O/E9PnPn4s3zzlG+:UhqKIfQxCUJ6vRwPkj6dJFK/EdnAsw+
Static task
static1
Behavioral task
behavioral1
Sample
002 COPIA DE LA NOTIFICACION.exe
Resource
win7-20241010-en
Behavioral task
behavioral2
Sample
002 COPIA DE LA NOTIFICACION.exe
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
libvlc.dll
Resource
win7-20240903-en
Behavioral task
behavioral4
Sample
libvlc.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral5
Sample
libvlccore.dll
Resource
win7-20240903-en
Behavioral task
behavioral6
Sample
libvlccore.dll
Resource
win10v2004-20241007-en
Malware Config
Extracted
asyncrat
| CRACKED BY https://t.me/xworm_v2
Default
envnuev1124.duckdns.org:3013
AsyncMutex_6SI8OkPnk
-
delay
3
-
install
false
-
install_folder
%AppData%
Targets
-
-
Target
002 COPIA DE LA NOTIFICACION.exe
-
Size
966KB
-
MD5
e634616d3b445fc1cd55ee79cf5326ea
-
SHA1
ca27a368d87bc776884322ca996f3b24e20645f4
-
SHA256
1fcd04fe1a3d519c7d585216b414cd947d16997d77d81a2892821f588c630937
-
SHA512
7d491c0a97ce60e22238a1a3530f45fbb3c82377b400d7986db09eccad05c9c22fb5daa2b4781882f870ab088326e5f6156613124caa67b54601cbad8f66aa90
-
SSDEEP
24576:we3xAibB85Z1HrWtB8z1L1OTJu5zzz3zzzozzz3zzzSZ:HxAibBEZ1LWtBzQrZ
-
Asyncrat family
-
Suspicious use of SetThreadContext
-
-
-
Target
libvlc.dll
-
Size
186KB
-
MD5
4b262612db64f26ea1168ca569811110
-
SHA1
8e59964d1302a3109513cd4fd22c1f313e79654c
-
SHA256
a9340c99206f3388153d85df4ca94d33b28c60879406cc10ff1fd10eae16523f
-
SHA512
9902e64eb1e5ed4c67f4b7e523b41bde4535148c6be20db5f386a1da74533ca575383f1b3154f5985e379df9e1e164b6bda25a66504edcfaa57d40b04fc658c7
-
SSDEEP
3072:f3jr3xal+e5Wz5+xCwcNohCMYMUyNUjqsbJLyLM5xjxN:f3jFe5WYYwRj4yNMqSLyLS
Score1/10 -
-
-
Target
libvlccore.dll
-
Size
2.7MB
-
MD5
97a73457e3ee2b11618c3e57e3989ffa
-
SHA1
d38cbe532661b6ff271d231594cad4b8fb37f158
-
SHA256
d03d0853e0104b47b595d64f79e7ee3d3821fe4cd962f6bd80e9df1507f8f2f4
-
SHA512
ab786207ef73fd637d9318fcf7a1969158e335d344dcf620888fa8f645715f0bfc098fda12e84fa67406dd80e2b63a1928bee2f13e8e7a9a8c327fa1c94dfe2d
-
SSDEEP
49152:PA9qEelmNGJRcsADSzpXtBOyABAUZLY6sEZGaXBuQQ9eyn:6q8fmABAUZL3a
Score1/10 -