General
-
Target
SLIMELOADER.exe
-
Size
19.1MB
-
Sample
240703-jcykbsshmh
-
MD5
039f81a11a351a2fdb41846f5fa11dbb
-
SHA1
6914bb55d8ab00f9c2e87979deb49e08ac1d7a15
-
SHA256
b0108278516de7de2e1af03443dce40071f80e43345488c457b94ca48647706a
-
SHA512
039bb5aaaad98fc5bdfd1cc508e140671253ba88bbd024375cac9de173843f8457a166e1719d3ed155599273cc3e87e8fe642dfde3d0e8915e8dfc342bb8cf01
-
SSDEEP
393216:zqPnLFXlrFWmQ6DOETgsvfGUgWVBE0d8vO4z8ksqc9Cm:2PLFXNFRQrETFHdPqsqI
Behavioral task
behavioral1
Sample
SLIMELOADER.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
SLIMELOADER.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
SLIMELOADER.exe
-
Size
19.1MB
-
MD5
039f81a11a351a2fdb41846f5fa11dbb
-
SHA1
6914bb55d8ab00f9c2e87979deb49e08ac1d7a15
-
SHA256
b0108278516de7de2e1af03443dce40071f80e43345488c457b94ca48647706a
-
SHA512
039bb5aaaad98fc5bdfd1cc508e140671253ba88bbd024375cac9de173843f8457a166e1719d3ed155599273cc3e87e8fe642dfde3d0e8915e8dfc342bb8cf01
-
SSDEEP
393216:zqPnLFXlrFWmQ6DOETgsvfGUgWVBE0d8vO4z8ksqc9Cm:2PLFXNFRQrETFHdPqsqI
Score7/10-
Loads dropped DLL
-
Adds Run key to start application
-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-