← Back to Pulse Feed
PULSE DETAIL
PULSE NAME
a bunch of malicious car /management apps - www.vxdiag.net/managecenter/apps/ford/install.exe
WHITE dorkingbeauty1 2022-08-09 Modified: 2022-09-08
239
IOCs
HIGH VOLUME
Fingerprint Queries kernel debugger information Reads the cryptographic machine GUID Evasive Marks file for deletion Possibly tries to evade analysis by sleeping many times
dropped filecomparam eiddefaultvaluecomparam idreferrorcode idrefidrefshortnameclasssuspiciousentropypathdelphimaliciousauguststubstringsapi keywww.vxdiag.net/managecenter/apps/ford/install.exe
MITRE ATT&CK & Malware Families
ATT&CK TECHNIQUES
Indicators of Compromise (239)
All URL hostname FileHash-SHA256 domain CVE FileHash-MD5 FileHash-SHA1
TYPEINDICATORDESCRIPTIONCREATED
URL https://www.yunzhongzhuan.com/downloads/index.html 2022-08-09
URL http://jiexi.bakuaiwu.com 2022-08-09
URL http://www.www.bakuaiwu.com/ 2022-08-09
URL https://jiexi.bakuaiwu.com 2022-08-09
URL https://www.bakuaiwu.com/vodhtml/21874.html 2022-08-09
hostname device-local-60511447-fd80-4d88-aa12-3212e10cb5fd.remotewd.com 2022-08-09
hostname device-local-6c318601-9b92-4c49-9a93-69a1ebedc3ff.remotewd.com 2022-08-09
hostname device-local-770a76aa-bb63-48a1-81d5-65539f007f7c.remotewd.com 2022-08-09
hostname cdn-static-www.yunzhongzhuan.com 2022-08-09
hostname device-local-f7621c8c-79b0-49ab-a748-50f82b9b06be.remotewd.com 2022-08-09
hostname ukdpwkq4rbkcuiql.myfritz.net 2022-08-09
hostname www.yunzhongzhuan.com 2022-08-09
FileHash-SHA256 07f902f6131c3162c6504f988d2ed48329d848215b65d81ce62e01102ad2550e 2022-08-09
FileHash-SHA256 5c11059168376699dc9e1b89540f766037b9560809475107cce2ae0d77ac39cb 2022-08-09
domain bakuaiwu.com 2022-08-09
domain paint.net 2022-08-09
URL http://www.w3.org/2001/XMLSchema-instance 2022-08-09
URL http://1.0.0.0 2022-08-09
URL http://www.vxdiag.net/?lang=en 2022-08-09
URL http://www.vxdiag.net/managecenter/apps.xml 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/PT3G/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/PT3G/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/VW/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/VW/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/ford/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/hino/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/hino/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/honda/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/honda/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/jlr/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/jlr/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw6154/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw6154/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/fws/ 2022-08-09
URL http://www.vxdiag.net/managecenter/fws/update.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/ford/install.exe 2022-08-09
hostname www.vxdiag.net 2022-08-09
URL https://www.vxdiag.net/managecenter/apps/ford/install.exe 2022-08-09
CVE CVE-2021-22941 2022-08-09
FileHash-SHA256 83a3bd71238363d919ab89e6b038b499a7429d24ff2ea2eadb12b9752c6370ce 2022-08-09
FileHash-SHA256 b6ac1bdb4a31787d8e6fa5aa8cbf2ce2538c0f63313fe4e57fdbe3ec2c869ddf 2022-08-09
FileHash-SHA256 f194fadb068ac3215258a3c4aabecb60283bd1b6d0bc5f86eb66fc49f870b783 2022-08-09
FileHash-MD5 1b9cc556bce31660f5a228c175d92a82 2022-08-09
FileHash-MD5 1ba43b9f0254889fc6e6bc37509dac58 2022-08-09
FileHash-MD5 40cd2aef2502584d705226c64c7bab18 2022-08-09
FileHash-MD5 42737137b0758bf0369100f261749dd0 2022-08-09
FileHash-MD5 4f3441a343af53c0300976fb9a4f3160 2022-08-09
FileHash-MD5 53d6916d0e2e76094c1160ea78972f42 2022-08-09
FileHash-MD5 6f9acfc26ccebdb7cb0f4322c4b9f046 2022-08-09
FileHash-MD5 73db1a02404d31eaaf6582b12d75948d 2022-08-09
FileHash-MD5 75e242cbcd975b006362833637f43629 2022-08-09
FileHash-MD5 7606ec090e888dce48fb8504f4289398 2022-08-09
FileHash-MD5 7661b236fe97fe08358d8c8a4b3da918 2022-08-09
FileHash-MD5 7e2ca690c06e72c154521ce100acefa1 2022-08-09
FileHash-MD5 7ef1f975d35c82a5e516b2c596935cb5 2022-08-09
FileHash-MD5 810cdc6851728c6a02a62d39cb187b8a 2022-08-09
FileHash-MD5 833319673b55b029406429f9b3242cc8 2022-08-09
FileHash-MD5 8f6afd0bafc72b0499c552baddbca255 2022-08-09
FileHash-MD5 91b71dbe075ec908b8b000283532e6d1 2022-08-09
FileHash-MD5 9467577295abcfb6a2e2239558c41832 2022-08-09
FileHash-MD5 94a72d877768de20a098e142115b66b6 2022-08-09
FileHash-MD5 9bade97efa55af329a2dbbcebad8f23b 2022-08-09
FileHash-MD5 9d75be10846e6dbe5fd9adc6d7cb93b4 2022-08-09
FileHash-MD5 9ea4141100b463fba7892f3fd1e675c5 2022-08-09
FileHash-MD5 a08e4342540c48f4a8bb345b81beb1f1 2022-08-09
FileHash-MD5 a51bd4d7736a8f532fce3ea153137c02 2022-08-09
FileHash-MD5 a6bc091962ac3d9b568fe73d479fda2e 2022-08-09
FileHash-MD5 aa0da7c712db1a3a6d8ab75c9337b878 2022-08-09
FileHash-MD5 afd2d5240568c445a850f05f1d73e8a4 2022-08-09
FileHash-MD5 b0ba7d5ffa7ad639b740ca3a089e6dd7 2022-08-09
FileHash-MD5 beceeb873f8e89daed608207b1349f45 2022-08-09
FileHash-MD5 cebf8f53d364ea845538ec8114dbb105 2022-08-09
FileHash-MD5 d7b37b744bb5fea5b4fea3064e6b5a35 2022-08-09
FileHash-MD5 d7e3e2193aa126fad67d407c6de1b5a5 2022-08-09
FileHash-MD5 e35fa9b1c9207b240a55dcc8a7e6e83a 2022-08-09
FileHash-MD5 e8ba695b89c523f53dbb758ca1845498 2022-08-09
FileHash-MD5 fc6683d30d9f25244a50fd5357825e79 2022-08-09
FileHash-SHA1 12b57100ffea48c8fa7341280dd865e6eb3c38a0 2022-08-09
FileHash-SHA1 14b5f8f5119c9057df7609e8b69dadb872f0a935 2022-08-09
FileHash-SHA1 1bcb9af2c3425bbbf9ee7641ead2ec4dc02da346 2022-08-09
FileHash-SHA1 2a4adf2f6f0d4adf8a54628672bd9ea2057206ba 2022-08-09
FileHash-SHA1 443965a0b8e7d7396db3110d824b0415fdc9e203 2022-08-09
FileHash-SHA1 49dd44a002429ef0737a251aed11ffe8e0ee4452 2022-08-09
FileHash-SHA1 61bac900b004ffcac2145e35a007b43a7a4433fe 2022-08-09
FileHash-SHA1 73a569cfbbe3df09a04024d8580e74d7b5b19e14 2022-08-09
FileHash-SHA1 947bb3077465895481850da06afda43f823dd206 2022-08-09
FileHash-SHA1 9fb554bfc25ff413e6f6f25514d9ab136eab27b7 2022-08-09
FileHash-SHA1 a1a47ca5ef8807da945717caadf3101f9e4fc0b4 2022-08-09
FileHash-SHA1 a53748b2495d91b53c10c2e93256151d75e0f797 2022-08-09
FileHash-SHA1 bf8d86abd0c5fd67ee58f7062c58a66251762288 2022-08-09
FileHash-SHA1 c6589f16f30725415b77c4a34cebe1e7ce8bdc91 2022-08-09
FileHash-SHA1 d08bc6f3afb4a73a7aad906fa85bf99ae9650848 2022-08-09
FileHash-SHA1 d24b9d61a8e6961f5ce6db2cc1b8eec25746fcc2 2022-08-09
FileHash-SHA1 e19ee99a60efd7356edacc9dcf15601cdfa99272 2022-08-09
FileHash-SHA256 0527e6680d1c03b707c84ec5a1da924bec95b43e13d1fc667dd9dde86f38824a 2022-08-09
FileHash-SHA256 0c11d1ee71156f12c5920a95fb468877ba21c08c728e2274d36fab469889168e 2022-08-09
FileHash-SHA256 338bb144cfa5f9a892daba51052542456a502d5508f78e61b2c8c40174b22dca 2022-08-09
FileHash-SHA256 3df0e9404586d10168fca2a956d7a686a1d9230b53fca8f5d3a0b3cefe88be48 2022-08-09
FileHash-SHA256 448db8d548b548e21fae5d4bf9e517f4abe1f38164dc7fe37349ac42cf66aadb 2022-08-09
FileHash-SHA256 675ef174c155fbc53e86a0c453c72446b8bc5d78a5c6e2ed8fba850d5d52d0cc 2022-08-09
FileHash-SHA256 6c83a7f005b24a5374213c5dd4958360007a8ef3d129c2c94383b8503a7440ce 2022-08-09
FileHash-SHA256 860638d549f9035a92e1b7701c7c2b7a2dfcc03364da8c8923468dd94a595ac4 2022-08-09
FileHash-SHA256 a1bb82444c58318f365748a5f7211e6544174856f8faaf30d0280e96ae4eaa27 2022-08-09
FileHash-SHA256 a9778221578032b2f7c28236cb7e511c04caa317f0538a69d693792b6c155632 2022-08-09
FileHash-SHA256 b9837296bd8996cfd4c00b206a4156a3529c688e1a5dca550805187f7c2b16c1 2022-08-09
FileHash-SHA256 b9c9da1f7359d7a78c79fbd6b8776a3dd56096eea9ab26e82dacd7c97de3fc69 2022-08-09
FileHash-SHA256 ca2b30f65f9bf7f07593cb14e676315a8c59c457b0e5859f7c7a4a4d41f3cdb1 2022-08-09
FileHash-SHA256 d5a891f5365336ff62c087b1954a6d1460f1b9430d02bc2c4cf394ad80d7f119 2022-08-09
FileHash-SHA256 d967611a59329587df8832a7c667b182e56f4dbd219ce8441f0ff6b88ac85b85 2022-08-09
FileHash-SHA256 f26b57af21aaca770221eb060b43c7e946803238703ac1e95d54259a33729e2c 2022-08-09
FileHash-SHA256 fd7ffa5afe7b62194bf13462160455f811c0f65bee96927b78f400ab3c32d711 2022-08-09
URL http://6.0.0.0 2022-08-09
domain bvtx-vci-rt.sn 2022-08-09
domain oldnames.lib 2022-08-09
FileHash-SHA256 012920aa0b759db96baf0bd3d6e071382499cc060dc9dbc7b35f50afcaf42a1d 2022-08-09
FileHash-SHA256 02f31b9814d88efc4728e47b1b1c1ea9e7c74f6ec0b6affd888e15fa418cefb3 2022-08-09
FileHash-SHA256 1bf0c04c6bcefb3796e1d3e8781a0ec1fc3179fe17d978a2e1b6f5b50a3cc58d 2022-08-09
FileHash-SHA256 2071d875a0e1b464d1d5970a8471900d07b163702ffff8fcc83c977c5f018e84 2022-08-09
FileHash-SHA256 257e51eebe16fc5498dd473a4d84f3de45e5588b498b4bab96e23941d942731d 2022-08-09
FileHash-SHA256 2d7eb64b7f1837ee8e4244e0f99c7a3eba731014195730a82d2c5bfb417ae339 2022-08-09
FileHash-SHA256 31e38a83b081f11f29afc8438782f3807b57468afe964e0335b6a74482f5abc7 2022-08-09
FileHash-SHA256 3d0ee82b254b3a54de02ab9ebe0c52e34dd8dd2eacd76edd28b8bf835db4e4aa 2022-08-09
FileHash-SHA256 6e352d97c8f3d1f074fe01266238f7695833f90ca62780f053f0bdfdc8897c8e 2022-08-09
FileHash-SHA256 706e8b5bd77c188c02cadbac1646c745d5eebdfbaafe86dc859de5ea44d34607 2022-08-09
FileHash-SHA256 85e967a0e539c748dfbca0d4d50a3dab472ac11d4d7f1e0f0710d1056410e6f8 2022-08-09
FileHash-SHA256 94eff85d5f1c82e4a8dffe315a6f2c04196fada820963fceacc06db40eab5083 2022-08-09
FileHash-SHA256 9b9294a737a1aec41fa9c41a21a918662d221d7db09b0b84a1f51856066b4421 2022-08-09
FileHash-SHA256 a2c341aa4203b822ab19784ea43dac51a75064561bc16067a139a586d724ce3c 2022-08-09
FileHash-SHA256 b1200ac56d9a8c6c97662e716c0fc0f5c377cf04b2f2ed7e3edddb9cdca15a7a 2022-08-09
FileHash-SHA256 b78d96000754ce786e22ec7894473cf6382b90bfad14b3ffa85e2aa9577b9ad0 2022-08-09
FileHash-SHA256 eca212c2f21203694473484120efa2bed4c7c51176de7b3f08979498b96790aa 2022-08-09
FileHash-SHA256 f0a1cddf9986935f490336e1a2e6721ecab24425320f56cf30484efdab12e8c9 2022-08-09
FileHash-SHA256 f85e7047d02a1fa07c0072cafe2932b4ecab993597992a6216ccbda3c3d03e67 2022-08-09
URL https://hybrid-analysis.com/search?query=context:04fe18eaf826525821e72f6a69f0a4eff729f4a676d8159e54964f7df7c8395d&block_redirect=1 2022-08-09
FileHash-SHA256 04fe18eaf826525821e72f6a69f0a4eff729f4a676d8159e54964f7df7c8395d 2022-08-09
URL https://twitter.com/HybridAnalysis 2022-08-09
URL http://www.w3.org/2001/XMLSchema-instance 2022-08-09
FileHash-SHA256 08db2f38e8b537114ac7dcdd109b98219992f2712afce36ff35fe5249d6f7bb4 2022-08-09
FileHash-SHA256 5c11059168376699dc9e1b89540f766037b9560809475107cce2ae0d77ac39cb 2022-08-09
hostname device-local-770a76aa-bb63-48a1-81d5-65539f007f7c.remotewd.com 2022-08-09
hostname device-local-6c318601-9b92-4c49-9a93-69a1ebedc3ff.remotewd.com 2022-08-09
hostname device-local-60511447-fd80-4d88-aa12-3212e10cb5fd.remotewd.com 2022-08-09
URL https://www.vxdiag.net/managecenter/apps/ford/install.exe 2022-08-09
URL https://www.vxdiag.net/managecenter/apps/ford/ 2022-08-09
URL http://www.vxdiag.net/managecenter/fws/update.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/fws/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw6154/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw6154/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/vw/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/jlr/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/jlr/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/honda/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/honda/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/hino/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/hino/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/ford/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/VW/install.exe 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/VW/ 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/PT3G/ 2022-08-09
URL https://www.metadefender.com/vulnerabilities 2022-08-09
URL https://www.metadefender.com/slbWwXLLvt.exe/Overview 2022-08-09
URL https://www.metadefender.com/reports/statistics 2022-08-09
URL https://www.metadefender.com/en/scanresult/file/ 2022-08-09
URL https://www.metadefender.com/en/public 2022-08-09
URL https://www.metadefender.com/en/ipscan/ 2022-08-09
URL https://www.metadefender.com/contact-us,Pattern 2022-08-09
URL https://www.metadefender.com/Plasma%20RAT.exe/Overview 2022-08-09
URL https://www.metadefender.com/CHANGELOG.tx 2022-08-09
URL https://www.metadefender.com/?utm_source=metadefenderclient&utm_medium=app&utm_campaign=MDClient_4_0_5 2022-08-09
URL https://www.falcon-sandbox.com/sample/8ff79e8070b432354bad483ea5fcf95317e234053816f88b03b5d863be775e13?environmentId=100&lang=de 2022-08-09
URL https://www.virustotal.com/#/file/83a3bd71238363d919ab89e6b038b499a7429d24ff2ea2eadb12b9752c6370ce/detection 2022-08-09
URL https://www.virustotal.com/#/file/f194fadb068ac3215258a3c4aabecb60283bd1b6d0bc5f86eb66fc49f870b783/detection 2022-08-09
domain paint.net 2022-08-09
FileHash-MD5 1b9cc556bce31660f5a228c175d92a82 2022-08-09
FileHash-MD5 1ba43b9f0254889fc6e6bc37509dac58 2022-08-09
FileHash-MD5 40cd2aef2502584d705226c64c7bab18 2022-08-09
FileHash-MD5 42737137b0758bf0369100f261749dd0 2022-08-09
FileHash-MD5 4f3441a343af53c0300976fb9a4f3160 2022-08-09
FileHash-MD5 53d6916d0e2e76094c1160ea78972f42 2022-08-09
FileHash-MD5 6f9acfc26ccebdb7cb0f4322c4b9f046 2022-08-09
FileHash-MD5 7661b236fe97fe08358d8c8a4b3da918 2022-08-09
FileHash-MD5 7e2ca690c06e72c154521ce100acefa1 2022-08-09
FileHash-MD5 810cdc6851728c6a02a62d39cb187b8a 2022-08-09
FileHash-MD5 8f6afd0bafc72b0499c552baddbca255 2022-08-09
FileHash-MD5 94a72d877768de20a098e142115b66b6 2022-08-09
FileHash-MD5 9bade97efa55af329a2dbbcebad8f23b 2022-08-09
FileHash-MD5 a51bd4d7736a8f532fce3ea153137c02 2022-08-09
FileHash-MD5 b0ba7d5ffa7ad639b740ca3a089e6dd7 2022-08-09
FileHash-MD5 beceeb873f8e89daed608207b1349f45 2022-08-09
FileHash-MD5 cebf8f53d364ea845538ec8114dbb105 2022-08-09
FileHash-MD5 d7b37b744bb5fea5b4fea3064e6b5a35 2022-08-09
FileHash-MD5 e8ba695b89c523f53dbb758ca1845498 2022-08-09
FileHash-MD5 fc6683d30d9f25244a50fd5357825e79 2022-08-09
FileHash-SHA1 12b57100ffea48c8fa7341280dd865e6eb3c38a0 2022-08-09
FileHash-SHA1 14b5f8f5119c9057df7609e8b69dadb872f0a935 2022-08-09
FileHash-SHA1 1bcb9af2c3425bbbf9ee7641ead2ec4dc02da346 2022-08-09
FileHash-SHA1 2a4adf2f6f0d4adf8a54628672bd9ea2057206ba 2022-08-09
FileHash-SHA1 443965a0b8e7d7396db3110d824b0415fdc9e203 2022-08-09
FileHash-SHA1 49dd44a002429ef0737a251aed11ffe8e0ee4452 2022-08-09
FileHash-SHA1 61bac900b004ffcac2145e35a007b43a7a4433fe 2022-08-09
FileHash-SHA1 73a569cfbbe3df09a04024d8580e74d7b5b19e14 2022-08-09
FileHash-SHA1 947bb3077465895481850da06afda43f823dd206 2022-08-09
FileHash-SHA1 9fb554bfc25ff413e6f6f25514d9ab136eab27b7 2022-08-09
FileHash-SHA1 a1a47ca5ef8807da945717caadf3101f9e4fc0b4 2022-08-09
FileHash-SHA1 a53748b2495d91b53c10c2e93256151d75e0f797 2022-08-09
FileHash-SHA1 bf8d86abd0c5fd67ee58f7062c58a66251762288 2022-08-09
FileHash-SHA1 c6589f16f30725415b77c4a34cebe1e7ce8bdc91 2022-08-09
FileHash-SHA1 d08bc6f3afb4a73a7aad906fa85bf99ae9650848 2022-08-09
FileHash-SHA1 d24b9d61a8e6961f5ce6db2cc1b8eec25746fcc2 2022-08-09
FileHash-SHA1 e19ee99a60efd7356edacc9dcf15601cdfa99272 2022-08-09
FileHash-SHA256 0527e6680d1c03b707c84ec5a1da924bec95b43e13d1fc667dd9dde86f38824a 2022-08-09
FileHash-SHA256 0c11d1ee71156f12c5920a95fb468877ba21c08c728e2274d36fab469889168e 2022-08-09
FileHash-SHA256 338bb144cfa5f9a892daba51052542456a502d5508f78e61b2c8c40174b22dca 2022-08-09
FileHash-SHA256 448db8d548b548e21fae5d4bf9e517f4abe1f38164dc7fe37349ac42cf66aadb 2022-08-09
FileHash-SHA256 6c83a7f005b24a5374213c5dd4958360007a8ef3d129c2c94383b8503a7440ce 2022-08-09
FileHash-SHA256 83a3bd71238363d919ab89e6b038b499a7429d24ff2ea2eadb12b9752c6370ce 2022-08-09
FileHash-SHA256 860638d549f9035a92e1b7701c7c2b7a2dfcc03364da8c8923468dd94a595ac4 2022-08-09
FileHash-SHA256 a1bb82444c58318f365748a5f7211e6544174856f8faaf30d0280e96ae4eaa27 2022-08-09
FileHash-SHA256 a9778221578032b2f7c28236cb7e511c04caa317f0538a69d693792b6c155632 2022-08-09
FileHash-SHA256 b6ac1bdb4a31787d8e6fa5aa8cbf2ce2538c0f63313fe4e57fdbe3ec2c869ddf 2022-08-09
FileHash-SHA256 b9837296bd8996cfd4c00b206a4156a3529c688e1a5dca550805187f7c2b16c1 2022-08-09
FileHash-SHA256 b9c9da1f7359d7a78c79fbd6b8776a3dd56096eea9ab26e82dacd7c97de3fc69 2022-08-09
FileHash-SHA256 ca2b30f65f9bf7f07593cb14e676315a8c59c457b0e5859f7c7a4a4d41f3cdb1 2022-08-09
FileHash-SHA256 d5a891f5365336ff62c087b1954a6d1460f1b9430d02bc2c4cf394ad80d7f119 2022-08-09
FileHash-SHA256 d967611a59329587df8832a7c667b182e56f4dbd219ce8441f0ff6b88ac85b85 2022-08-09
FileHash-SHA256 f194fadb068ac3215258a3c4aabecb60283bd1b6d0bc5f86eb66fc49f870b783 2022-08-09
FileHash-SHA256 f26b57af21aaca770221eb060b43c7e946803238703ac1e95d54259a33729e2c 2022-08-09
FileHash-SHA256 fd7ffa5afe7b62194bf13462160455f811c0f65bee96927b78f400ab3c32d711 2022-08-09
URL http://www.vxdiag.net/managecenter/apps/ford/install.exe 2022-08-09
URL https://www.falcon-sandbox.com/ 2022-08-09
URL https://www.metadefender.com/#!/results/file/bzIxMDUyMUJEZ1JtUTR0TmRfWUdiZ2hqRC0/regular 2022-08-09
URL https://www.metadefender.com/#!/results/file/bzIxMDUyMXhxRmRzcUhvekk4UThUSXBrWXZs/regular 2022-08-09
domain bvtx-vci-rt.sn 2022-08-09
hostname www.falcon-sandbox.com 2022-08-09
hostname www.metadefender.com 2022-08-09
hostname www.vxdiag.net 2022-08-09
References (3)
↗ CVE-2021-22941 ↗ https://hybrid-analysis.com/sample/b6ac1bdb4a31787d8e6fa5aa8cbf2ce2538c0f63313fe4e57fdbe3ec2c869ddf ↗ https://hybrid-analysis.com/sample/b6ac1bdb4a31787d8e6fa5aa8cbf2ce2538c0f63313fe4e57fdbe3ec2c869ddf/62f124a02adc8f11be57bbe4