General
-
Target
http://69.51.24.27/uploads/soft/boohbahshell.exe
-
Sample
201126-hzbrj7cvc2
Score
10/10
Static task
static1
URLScan task
urlscan1
Sample
http://69.51.24.27/uploads/soft/boohbahshell.exe
Behavioral task
behavioral1
Sample
http://69.51.24.27/uploads/soft/boohbahshell.exe
Resource
win10v20201028
windows10_x64
0 signatures
0 seconds
Behavioral task
behavioral2
Sample
http://69.51.24.27/uploads/soft/boohbahshell.exe
Resource
win7v20201028
windows7_x64
0 signatures
0 seconds
Malware Config
Targets
-
-
Target
http://69.51.24.27/uploads/soft/boohbahshell.exe
Score10/10-
Modifies WinLogon for persistence
-
Disables Task Manager via registry modification
-
Executes dropped EXE
-
Modifies WinLogon to allow AutoLogon
Enables rebooting of the machine without requiring login credentials.
-