General
-
Target
d91fd9f5423638d94aa778e9baa4d5db6d5775995f162d0653b6b0af005d10dc
-
Size
5.2MB
-
Sample
240701-bttzgasbmf
-
MD5
f81c2a703c9fec6f1454a2bd698d7777
-
SHA1
1b6557009e9a306b18c5ea38f826d08234940863
-
SHA256
d91fd9f5423638d94aa778e9baa4d5db6d5775995f162d0653b6b0af005d10dc
-
SHA512
71f7856cb53d6c11dad667f5e02371c592685a0151dff252ca943e19568a28b71f18e104d2e4427f50005dc6cf2aeaba36e5a7e9f20033a4e1f91412483a5795
-
SSDEEP
98304:C0pJQEKX0H6wM19P8KUoHJ+fKSIsTf2lEDwnKWHHbxv8G9VHCdnQx7:rJ5NI18voUffTf2lvKWHdEG9AQt
Static task
static1
Behavioral task
behavioral1
Sample
d91fd9f5423638d94aa778e9baa4d5db6d5775995f162d0653b6b0af005d10dc.exe
Resource
win10v2004-20240226-en
Behavioral task
behavioral2
Sample
d91fd9f5423638d94aa778e9baa4d5db6d5775995f162d0653b6b0af005d10dc.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
d91fd9f5423638d94aa778e9baa4d5db6d5775995f162d0653b6b0af005d10dc
-
Size
5.2MB
-
MD5
f81c2a703c9fec6f1454a2bd698d7777
-
SHA1
1b6557009e9a306b18c5ea38f826d08234940863
-
SHA256
d91fd9f5423638d94aa778e9baa4d5db6d5775995f162d0653b6b0af005d10dc
-
SHA512
71f7856cb53d6c11dad667f5e02371c592685a0151dff252ca943e19568a28b71f18e104d2e4427f50005dc6cf2aeaba36e5a7e9f20033a4e1f91412483a5795
-
SSDEEP
98304:C0pJQEKX0H6wM19P8KUoHJ+fKSIsTf2lEDwnKWHHbxv8G9VHCdnQx7:rJ5NI18voUffTf2lvKWHdEG9AQt
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-