General
-
Target
b4538aa8dee7e47b5b243096ccb57cb5d9ea495f3b3f983f30ebad1d4e13d9cd
-
Size
5.2MB
-
Sample
240701-vzqzjszfrh
-
MD5
96db49dfdd5da4ff9f99ad285c055c75
-
SHA1
fd2525cf0f3d79d124420e832b70fc3a2703201e
-
SHA256
b4538aa8dee7e47b5b243096ccb57cb5d9ea495f3b3f983f30ebad1d4e13d9cd
-
SHA512
47decaebd0582d69a2beddfcb40569650e1394654d7a46a7bf02abc7bb5f2679ae486f892ab8d3b731afab2baab2afce5dfa3bc9e33db5e0b814d0b024a94dca
-
SSDEEP
98304:CY8T5Nt4kh56jFH9RIXMqIWuLpyLerMikg0Bq+Lvfcw4tEdJkHBBDaQxy:WNSfjh9RIIDly07yqOfcw4EKrDaQE
Static task
static1
Behavioral task
behavioral1
Sample
b4538aa8dee7e47b5b243096ccb57cb5d9ea495f3b3f983f30ebad1d4e13d9cd.exe
Resource
win10v2004-20240508-en
Behavioral task
behavioral2
Sample
b4538aa8dee7e47b5b243096ccb57cb5d9ea495f3b3f983f30ebad1d4e13d9cd.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
b4538aa8dee7e47b5b243096ccb57cb5d9ea495f3b3f983f30ebad1d4e13d9cd
-
Size
5.2MB
-
MD5
96db49dfdd5da4ff9f99ad285c055c75
-
SHA1
fd2525cf0f3d79d124420e832b70fc3a2703201e
-
SHA256
b4538aa8dee7e47b5b243096ccb57cb5d9ea495f3b3f983f30ebad1d4e13d9cd
-
SHA512
47decaebd0582d69a2beddfcb40569650e1394654d7a46a7bf02abc7bb5f2679ae486f892ab8d3b731afab2baab2afce5dfa3bc9e33db5e0b814d0b024a94dca
-
SSDEEP
98304:CY8T5Nt4kh56jFH9RIXMqIWuLpyLerMikg0Bq+Lvfcw4tEdJkHBBDaQxy:WNSfjh9RIIDly07yqOfcw4EKrDaQE
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-