General
-
Target
gameover_0.0.0.18.vir
-
Size
5.9MB
-
Sample
200719-s4b6jvzkxs
-
MD5
78e41bf10b0cb626b90d845f37afe7e4
-
SHA1
d4e09053f04ae5a93b7af8c6f0f4e6c74247b260
-
SHA256
bea5c56d864e39deef5d23cb9143f8572030da6b1df49a23d7d7151361de34ab
-
SHA512
8cdd44fda380260415575ef9d85c798f217a9a8451ecb50ed0f395aa12fcbc66f2f36ef94b04bdd67b78a9b317d4679a089e3393bee903cf05e28060293e1e63
Static task
static1
Behavioral task
behavioral1
Sample
gameover_0.0.0.18.vir.exe
Resource
win7v200430
Behavioral task
behavioral2
Sample
gameover_0.0.0.18.vir.exe
Resource
win10
Malware Config
Targets
-
-
Target
gameover_0.0.0.18.vir
-
Size
5.9MB
-
MD5
78e41bf10b0cb626b90d845f37afe7e4
-
SHA1
d4e09053f04ae5a93b7af8c6f0f4e6c74247b260
-
SHA256
bea5c56d864e39deef5d23cb9143f8572030da6b1df49a23d7d7151361de34ab
-
SHA512
8cdd44fda380260415575ef9d85c798f217a9a8451ecb50ed0f395aa12fcbc66f2f36ef94b04bdd67b78a9b317d4679a089e3393bee903cf05e28060293e1e63
Score8/10-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-