General
-
Target
fc9a89692a124f4f0353ac0caf60e3e67d0a5fb9fd7ec7e4cc8334083054acfb
-
Size
5.5MB
-
Sample
240701-rknzvswcpc
-
MD5
6aacb63def4608e77d65101830fc3651
-
SHA1
cc185f7501213c22167edf4d9e45d832dff3d2b1
-
SHA256
fc9a89692a124f4f0353ac0caf60e3e67d0a5fb9fd7ec7e4cc8334083054acfb
-
SHA512
5571b91ecded8f8052bb13078b9fa0746dc659ea6b3eaa5ce382944025b65c130ea9d17a3a2a6e9781e157b419f9a065cc68b60f2b0372c18bbdad802e63f69f
-
SSDEEP
98304:CQstmqnObn9Y0O7MnUS8sIK6kc/M39Cpr7H2Pn8MEdTFKQ/6Qx7:CtmqnynWR7MnU2cUt68nhE8K6QV
Static task
static1
Behavioral task
behavioral1
Sample
fc9a89692a124f4f0353ac0caf60e3e67d0a5fb9fd7ec7e4cc8334083054acfb.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral2
Sample
fc9a89692a124f4f0353ac0caf60e3e67d0a5fb9fd7ec7e4cc8334083054acfb.exe
Resource
win11-20240611-en
Malware Config
Targets
-
-
Target
fc9a89692a124f4f0353ac0caf60e3e67d0a5fb9fd7ec7e4cc8334083054acfb
-
Size
5.5MB
-
MD5
6aacb63def4608e77d65101830fc3651
-
SHA1
cc185f7501213c22167edf4d9e45d832dff3d2b1
-
SHA256
fc9a89692a124f4f0353ac0caf60e3e67d0a5fb9fd7ec7e4cc8334083054acfb
-
SHA512
5571b91ecded8f8052bb13078b9fa0746dc659ea6b3eaa5ce382944025b65c130ea9d17a3a2a6e9781e157b419f9a065cc68b60f2b0372c18bbdad802e63f69f
-
SSDEEP
98304:CQstmqnObn9Y0O7MnUS8sIK6kc/M39Cpr7H2Pn8MEdTFKQ/6Qx7:CtmqnynWR7MnU2cUt68nhE8K6QV
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-