General
-
Target
36a77d058d04587d310af6290a4c7d8fdb6a90fa60c5521e7dde2dc24bae6490
-
Size
4.9MB
-
Sample
240701-fn5w1azgmj
-
MD5
f929cb3d7250bbedf1f843c4b5ba5e09
-
SHA1
69487c6f11af835412f579382fd8214221fa51c2
-
SHA256
36a77d058d04587d310af6290a4c7d8fdb6a90fa60c5521e7dde2dc24bae6490
-
SHA512
27e580dc7e3e91aa2be98f66745372d83e751a748ed7cb6cc38dba3fe8f98f8171145bd48daa723a7b13b127ebecf170b89b5e3cdaacfece54f3ad0ff8cff9e8
-
SSDEEP
98304:CU8aNCaXKUm0I+w17QcEzoIa0S60f+uLBsbbkvOpLtq4e2T+h2Q9zXI8Qxg:B8KCxUm2w17Qcky0Mr9iSOpLAv2T+hvJ
Static task
static1
Behavioral task
behavioral1
Sample
36a77d058d04587d310af6290a4c7d8fdb6a90fa60c5521e7dde2dc24bae6490.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
36a77d058d04587d310af6290a4c7d8fdb6a90fa60c5521e7dde2dc24bae6490.exe
Resource
win10-20240404-en
Malware Config
Targets
-
-
Target
36a77d058d04587d310af6290a4c7d8fdb6a90fa60c5521e7dde2dc24bae6490
-
Size
4.9MB
-
MD5
f929cb3d7250bbedf1f843c4b5ba5e09
-
SHA1
69487c6f11af835412f579382fd8214221fa51c2
-
SHA256
36a77d058d04587d310af6290a4c7d8fdb6a90fa60c5521e7dde2dc24bae6490
-
SHA512
27e580dc7e3e91aa2be98f66745372d83e751a748ed7cb6cc38dba3fe8f98f8171145bd48daa723a7b13b127ebecf170b89b5e3cdaacfece54f3ad0ff8cff9e8
-
SSDEEP
98304:CU8aNCaXKUm0I+w17QcEzoIa0S60f+uLBsbbkvOpLtq4e2T+h2Q9zXI8Qxg:B8KCxUm2w17Qcky0Mr9iSOpLAv2T+hvJ
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-