General
-
Target
5146cd3ad1333f72cbe2c3cb8980aaf7ddb6b710fedda50a5b16b999eea74f16
-
Size
5.2MB
-
Sample
240701-nh8dyayera
-
MD5
1f96023e14cc34235cd501eef1557192
-
SHA1
609d0fe1544cb0cc54eb0d63c9677e49236bcc5d
-
SHA256
5146cd3ad1333f72cbe2c3cb8980aaf7ddb6b710fedda50a5b16b999eea74f16
-
SHA512
6c0a4aae331d88e0268f903c2a0fd0d2edb218ec224e36419da27f199c955253c840de9ae5de3fc46c4a2c5433393518d24f0da8ec316faabcccba5f1ae169ba
-
SSDEEP
98304:CH7JcgOyGfN8FCUpRTUyC/3f4NHdzGN4X2ONUZOgnMrz2ML+Qxle:ScMIICU3TUXk9zG2XYpqwQK
Static task
static1
Behavioral task
behavioral1
Sample
5146cd3ad1333f72cbe2c3cb8980aaf7ddb6b710fedda50a5b16b999eea74f16.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
5146cd3ad1333f72cbe2c3cb8980aaf7ddb6b710fedda50a5b16b999eea74f16.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
5146cd3ad1333f72cbe2c3cb8980aaf7ddb6b710fedda50a5b16b999eea74f16
-
Size
5.2MB
-
MD5
1f96023e14cc34235cd501eef1557192
-
SHA1
609d0fe1544cb0cc54eb0d63c9677e49236bcc5d
-
SHA256
5146cd3ad1333f72cbe2c3cb8980aaf7ddb6b710fedda50a5b16b999eea74f16
-
SHA512
6c0a4aae331d88e0268f903c2a0fd0d2edb218ec224e36419da27f199c955253c840de9ae5de3fc46c4a2c5433393518d24f0da8ec316faabcccba5f1ae169ba
-
SSDEEP
98304:CH7JcgOyGfN8FCUpRTUyC/3f4NHdzGN4X2ONUZOgnMrz2ML+Qxle:ScMIICU3TUXk9zG2XYpqwQK
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-