General
-
Target
a9428152505947ed52bc9f27305e5e5699302b557f5dd7f86a9e19ca3acb47d9
-
Size
4.9MB
-
Sample
240629-ysvwpsvcrb
-
MD5
aa2dd421a08d7eddeaf18356aae89abe
-
SHA1
a6faba8bf84c52701a091c1c39e1605f71dee69e
-
SHA256
a9428152505947ed52bc9f27305e5e5699302b557f5dd7f86a9e19ca3acb47d9
-
SHA512
f5f2ea98cac14cf54bf785bc0471c8ab5fa176f368b406e4a08d53f6621723112ffa5c6e5e8bc0425ac53fe4e56bbacb64c833606b1b56336c5f4a8f7338899c
-
SSDEEP
98304:C5MfJHjes9t0gPy15f7PAf6hTd/SlTi1GdsJAwHAInpfkDP5GSm+GXCQx9W:NhBYcy15f7PthTd/Sl96AwLnq5jVkCQa
Static task
static1
Behavioral task
behavioral1
Sample
a9428152505947ed52bc9f27305e5e5699302b557f5dd7f86a9e19ca3acb47d9.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral2
Sample
a9428152505947ed52bc9f27305e5e5699302b557f5dd7f86a9e19ca3acb47d9.exe
Resource
win11-20240419-en
Malware Config
Targets
-
-
Target
a9428152505947ed52bc9f27305e5e5699302b557f5dd7f86a9e19ca3acb47d9
-
Size
4.9MB
-
MD5
aa2dd421a08d7eddeaf18356aae89abe
-
SHA1
a6faba8bf84c52701a091c1c39e1605f71dee69e
-
SHA256
a9428152505947ed52bc9f27305e5e5699302b557f5dd7f86a9e19ca3acb47d9
-
SHA512
f5f2ea98cac14cf54bf785bc0471c8ab5fa176f368b406e4a08d53f6621723112ffa5c6e5e8bc0425ac53fe4e56bbacb64c833606b1b56336c5f4a8f7338899c
-
SSDEEP
98304:C5MfJHjes9t0gPy15f7PAf6hTd/SlTi1GdsJAwHAInpfkDP5GSm+GXCQx9W:NhBYcy15f7PthTd/Sl96AwLnq5jVkCQa
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-