General
-
Target
3a9862f1b061b438267c5f0492243dcdc98a958a9b5c34e8907e29ccc1472c08
-
Size
5.1MB
-
Sample
240703-f5p7watcmr
-
MD5
513842cb6672cc1ecbbbb6e4c29c9466
-
SHA1
d029ee65ce6d2239ea8f6b1c5eaffd6bf6824afd
-
SHA256
3a9862f1b061b438267c5f0492243dcdc98a958a9b5c34e8907e29ccc1472c08
-
SHA512
474ee28808b5c2ab7084e89e11bdb086339734cc56a725b00ec2c9dbbd8c79edaaa8b4b031c51178502ecba87abed533aef5ee7ebbe4e3f954b897cb92e7940d
-
SSDEEP
98304:CzrCgVsxeu7m9xVdSYCm0O9cNuzk9OoPuDdEHrTqI4y03suJvVZPb5GF+FgQxDa:uL4170xVdSzm0O9y/9HPMofm3suhb0FR
Static task
static1
Behavioral task
behavioral1
Sample
3a9862f1b061b438267c5f0492243dcdc98a958a9b5c34e8907e29ccc1472c08.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral2
Sample
3a9862f1b061b438267c5f0492243dcdc98a958a9b5c34e8907e29ccc1472c08.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
3a9862f1b061b438267c5f0492243dcdc98a958a9b5c34e8907e29ccc1472c08
-
Size
5.1MB
-
MD5
513842cb6672cc1ecbbbb6e4c29c9466
-
SHA1
d029ee65ce6d2239ea8f6b1c5eaffd6bf6824afd
-
SHA256
3a9862f1b061b438267c5f0492243dcdc98a958a9b5c34e8907e29ccc1472c08
-
SHA512
474ee28808b5c2ab7084e89e11bdb086339734cc56a725b00ec2c9dbbd8c79edaaa8b4b031c51178502ecba87abed533aef5ee7ebbe4e3f954b897cb92e7940d
-
SSDEEP
98304:CzrCgVsxeu7m9xVdSYCm0O9cNuzk9OoPuDdEHrTqI4y03suJvVZPb5GF+FgQxDa:uL4170xVdSzm0O9y/9HPMofm3suhb0FR
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-