Analysis
-
max time kernel
117s -
max time network
117s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
21-12-2024 21:17
Static task
static1
Behavioral task
behavioral1
Sample
candyx32.dll
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
candyx32.dll
Resource
win10v2004-20241007-en
Behavioral task
behavioral3
Sample
core.bat
Resource
win7-20241010-en
Behavioral task
behavioral4
Sample
core.bat
Resource
win10v2004-20241007-en
General
-
Target
candyx32.dll
-
Size
63KB
-
MD5
26cc03d079e42949b14531f928270fde
-
SHA1
7637f33593dd3ecc0ec3282c2b5f01144e1469e1
-
SHA256
a4c4595c433df98705676f3503c5cc7e13c352a2e0b73587f4ed7424b25720c1
-
SHA512
bd66dfd4cdfc69787ede1dcf14f69d9e7f65e34ddf94636d430f20afe532f75601fc8115529eb036ddca7654a9f454ea62e003ea3313d0729b931765f52f9808
-
SSDEEP
384:JpmS8/XZSFKRFJffa3+1Df4gIfoafa3+TR5gpf0tdWRYCS0CrLk22CXIWhPPuQ:zdUfBlf4gIfoafBTkodFTXIWhPP
Malware Config
Extracted
icedid
302245654
imilarquestio.top
heywanted.top
minimike.quest
alsohavethis.top
-
auth_var
5
-
url_path
/posts/