General
-
Target
5937cd8aabc700645c698fa8a0255f0c30c77730a75714d36338ad6c2891caff
-
Size
251KB
-
Sample
201106-we3vaja9ze
-
MD5
f5c272732c4a78380635cd7183260b56
-
SHA1
69cfb96040c278e781351c3eb4d94656b317d60b
-
SHA256
5937cd8aabc700645c698fa8a0255f0c30c77730a75714d36338ad6c2891caff
-
SHA512
4c096759fe7aae04f4df0d72096eef12f73c27e78d08bbb9562507c1cbb99de1e28e872d7c3254c55e8c9609d65104e32ff2c3c817937667b08a92fa1baeb8c4
Static task
static1
Behavioral task
behavioral1
Sample
5937cd8aabc700645c698fa8a0255f0c30c77730a75714d36338ad6c2891caff.exe
Resource
win7v20201028
Malware Config
Targets
-
-
Target
5937cd8aabc700645c698fa8a0255f0c30c77730a75714d36338ad6c2891caff
-
Size
251KB
-
MD5
f5c272732c4a78380635cd7183260b56
-
SHA1
69cfb96040c278e781351c3eb4d94656b317d60b
-
SHA256
5937cd8aabc700645c698fa8a0255f0c30c77730a75714d36338ad6c2891caff
-
SHA512
4c096759fe7aae04f4df0d72096eef12f73c27e78d08bbb9562507c1cbb99de1e28e872d7c3254c55e8c9609d65104e32ff2c3c817937667b08a92fa1baeb8c4
-
Modifies WinLogon for persistence
-
Modifies security service
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-