General
-
Target
0f3a458e696a7eadd56ffc49299c7f5fb6a2d0e8ab2c481e8dd5e1c6c40cb8f8
-
Size
5.1MB
-
Sample
240703-gtrr1avbnm
-
MD5
3c44e5b6eae68851c284d6d647960dd3
-
SHA1
b2221828e6e7849830b6964b5c9a9c90783e5dbf
-
SHA256
0f3a458e696a7eadd56ffc49299c7f5fb6a2d0e8ab2c481e8dd5e1c6c40cb8f8
-
SHA512
f3a2b585aeb2af2c3cbffbd9a4797e48447d6c1d3a333e66c3ad7eaf1dda708ff9b0a5535caf85820cc2116a5c6d09b3128ac8d1fefb9fc4594aa95c84282eb6
-
SSDEEP
98304:CqQLzSHP05fh6IdeS3QEzxfloy7ElErG4d/SiOX9P0RjsbBFrexMlZBMKduQxDa:ALzOP/UdQEdloy7WEz/SiOXVWxMloXQ8
Static task
static1
Behavioral task
behavioral1
Sample
0f3a458e696a7eadd56ffc49299c7f5fb6a2d0e8ab2c481e8dd5e1c6c40cb8f8.exe
Resource
win10v2004-20240611-en
Behavioral task
behavioral2
Sample
0f3a458e696a7eadd56ffc49299c7f5fb6a2d0e8ab2c481e8dd5e1c6c40cb8f8.exe
Resource
win11-20240508-en
Malware Config
Targets
-
-
Target
0f3a458e696a7eadd56ffc49299c7f5fb6a2d0e8ab2c481e8dd5e1c6c40cb8f8
-
Size
5.1MB
-
MD5
3c44e5b6eae68851c284d6d647960dd3
-
SHA1
b2221828e6e7849830b6964b5c9a9c90783e5dbf
-
SHA256
0f3a458e696a7eadd56ffc49299c7f5fb6a2d0e8ab2c481e8dd5e1c6c40cb8f8
-
SHA512
f3a2b585aeb2af2c3cbffbd9a4797e48447d6c1d3a333e66c3ad7eaf1dda708ff9b0a5535caf85820cc2116a5c6d09b3128ac8d1fefb9fc4594aa95c84282eb6
-
SSDEEP
98304:CqQLzSHP05fh6IdeS3QEzxfloy7ElErG4d/SiOX9P0RjsbBFrexMlZBMKduQxDa:ALzOP/UdQEdloy7WEz/SiOXVWxMloXQ8
Score10/10-
Detect Socks5Systemz Payload
-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-