General
-
Target
2ea3ed2b71990bf8be9e338602962ae956428513f9bc7cf2a74efe20c53d05e2
-
Size
4.9MB
-
Sample
240628-shwscsveqf
-
MD5
58dad2a6ad8cf8f0effe4a60a625a7b1
-
SHA1
497d5ec3ab1aeed5afd1eca25a5acc7249c48f0c
-
SHA256
2ea3ed2b71990bf8be9e338602962ae956428513f9bc7cf2a74efe20c53d05e2
-
SHA512
8b191e4ee909d901d9ab62a88244ff5ac176b9e3a29a23dbfb1c426fdc2024d2a2c8483a1ac97c7846d4639a6ecd1a8b21e709bd6d73126aa428a8618ba637f7
-
SSDEEP
98304:CguimEB6OyqCZ/nWBY9DP2W/hECOOccWAzTaMIUaUGNffS1iNZ0RLLYLeA7MPOQG:MjEMqo/WKx5DqkNuffm8+LLCekMPOQG
Static task
static1
Behavioral task
behavioral1
Sample
2ea3ed2b71990bf8be9e338602962ae956428513f9bc7cf2a74efe20c53d05e2.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
2ea3ed2b71990bf8be9e338602962ae956428513f9bc7cf2a74efe20c53d05e2.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
2ea3ed2b71990bf8be9e338602962ae956428513f9bc7cf2a74efe20c53d05e2
-
Size
4.9MB
-
MD5
58dad2a6ad8cf8f0effe4a60a625a7b1
-
SHA1
497d5ec3ab1aeed5afd1eca25a5acc7249c48f0c
-
SHA256
2ea3ed2b71990bf8be9e338602962ae956428513f9bc7cf2a74efe20c53d05e2
-
SHA512
8b191e4ee909d901d9ab62a88244ff5ac176b9e3a29a23dbfb1c426fdc2024d2a2c8483a1ac97c7846d4639a6ecd1a8b21e709bd6d73126aa428a8618ba637f7
-
SSDEEP
98304:CguimEB6OyqCZ/nWBY9DP2W/hECOOccWAzTaMIUaUGNffS1iNZ0RLLYLeA7MPOQG:MjEMqo/WKx5DqkNuffm8+LLCekMPOQG
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-