General
-
Target
fe9b7b5e162ac6434bfac1e756d6712331d02ec687c15ddfb4bf86009b8c7b89
-
Size
4.9MB
-
Sample
240628-v739vaxerf
-
MD5
d0edf30605f41e7e4276afafe83f1662
-
SHA1
1861294776a2e5313b5280f26d8548377244e5b8
-
SHA256
fe9b7b5e162ac6434bfac1e756d6712331d02ec687c15ddfb4bf86009b8c7b89
-
SHA512
65f721622e9d9e0f223eccc17cfb033a7935b59ee518678602af2afef405d6bd83fc2da143dae2f23a608da0af3bd861b1984f56f2ce636ad45eb4e76e299dc4
-
SSDEEP
98304:Cy68M6TruLpVDmp2bFqmtEDLM0HnHq5DNogDrxW5OFIZ9zMawKQxg:E6eLSp2bogEfM0nq9mgXxWbZdQC
Static task
static1
Behavioral task
behavioral1
Sample
fe9b7b5e162ac6434bfac1e756d6712331d02ec687c15ddfb4bf86009b8c7b89.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
fe9b7b5e162ac6434bfac1e756d6712331d02ec687c15ddfb4bf86009b8c7b89.exe
Resource
win11-20240419-en
Malware Config
Targets
-
-
Target
fe9b7b5e162ac6434bfac1e756d6712331d02ec687c15ddfb4bf86009b8c7b89
-
Size
4.9MB
-
MD5
d0edf30605f41e7e4276afafe83f1662
-
SHA1
1861294776a2e5313b5280f26d8548377244e5b8
-
SHA256
fe9b7b5e162ac6434bfac1e756d6712331d02ec687c15ddfb4bf86009b8c7b89
-
SHA512
65f721622e9d9e0f223eccc17cfb033a7935b59ee518678602af2afef405d6bd83fc2da143dae2f23a608da0af3bd861b1984f56f2ce636ad45eb4e76e299dc4
-
SSDEEP
98304:Cy68M6TruLpVDmp2bFqmtEDLM0HnHq5DNogDrxW5OFIZ9zMawKQxg:E6eLSp2bogEfM0nq9mgXxWbZdQC
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-