General
-
Target
ByteZero (1).exe
-
Size
18.5MB
-
Sample
240701-bbkm3s1dne
-
MD5
0f1857f06b9e352e57ac432ccf143489
-
SHA1
e0ca9d5cf1ba9fceb6ca02b41ac03302f8af3d8c
-
SHA256
1adc3f288af1fba51b0835ac7c64942587aa747150f046a44f44ff49a2e4eb11
-
SHA512
91fc74d3e3c378562fb87c64390f006cb06cdf373da8b03b0facebc8a3e5585ed1f97700f970ba124471fbdb18a23ef81bc5d0b86cff28a83e63a8a4e57145a4
-
SSDEEP
393216:BqPnLFXlrPrQ8DOETgs77fG3ghagvEkfS1K7y6q:oPLFXNjQhE7gQaZX1Ko
Behavioral task
behavioral1
Sample
ByteZero (1).exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ByteZero (1).exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
ByteZero (1).exe
-
Size
18.5MB
-
MD5
0f1857f06b9e352e57ac432ccf143489
-
SHA1
e0ca9d5cf1ba9fceb6ca02b41ac03302f8af3d8c
-
SHA256
1adc3f288af1fba51b0835ac7c64942587aa747150f046a44f44ff49a2e4eb11
-
SHA512
91fc74d3e3c378562fb87c64390f006cb06cdf373da8b03b0facebc8a3e5585ed1f97700f970ba124471fbdb18a23ef81bc5d0b86cff28a83e63a8a4e57145a4
-
SSDEEP
393216:BqPnLFXlrPrQ8DOETgs77fG3ghagvEkfS1K7y6q:oPLFXNjQhE7gQaZX1Ko
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-