General
-
Target
CROWN.exe
-
Size
12.6MB
-
Sample
240630-wmwjyavelr
-
MD5
8030e7cc862966d3a8f0d38a5e53f5c2
-
SHA1
aa88ab0e2a09a27a1ec0a53048c89eecd652d807
-
SHA256
19a8347fc352260145f0129da88c7208df186a98ae3ef2bc2a162eed733b1da8
-
SHA512
301c3a1a70c632f23596106a283dba712d95fe340ba9cd2ca5db63c7842167373fdf25dad3bbf6567ebf0b710541a90396a5469cdbaf70d2f1160e7dacb920d4
-
SSDEEP
393216:POVZxlHOFGCEDs9/DX4GH2ciIrHWRnxsAr3+:QBHCEDs9/kILIxXr
Behavioral task
behavioral1
Sample
CROWN.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
CROWN.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
CROWN.exe
-
Size
12.6MB
-
MD5
8030e7cc862966d3a8f0d38a5e53f5c2
-
SHA1
aa88ab0e2a09a27a1ec0a53048c89eecd652d807
-
SHA256
19a8347fc352260145f0129da88c7208df186a98ae3ef2bc2a162eed733b1da8
-
SHA512
301c3a1a70c632f23596106a283dba712d95fe340ba9cd2ca5db63c7842167373fdf25dad3bbf6567ebf0b710541a90396a5469cdbaf70d2f1160e7dacb920d4
-
SSDEEP
393216:POVZxlHOFGCEDs9/DX4GH2ciIrHWRnxsAr3+:QBHCEDs9/kILIxXr
Score7/10-
Loads dropped DLL
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-