General
-
Target
D68.vbs
-
Size
1KB
-
Sample
210227-a8w8xyyav6
-
MD5
ab9cc26b8906ebb66972fec16a3d4e23
-
SHA1
20e4f76a75bff04ea457eea160c621192445c416
-
SHA256
a1658b6be9e1b593d0bb054f4076ab1ee1dec29106dedf21104775ed29bba191
-
SHA512
ad3246a0afccf93ac2d866028489f7cedc37459ebe05277fd130100a49f45cc0e68ea6bef90217071d3de61a9c7b8b727f94fd57dce4e1f3626b2cac30169013
Static task
static1
Behavioral task
behavioral1
Sample
D68.vbs
Resource
win7v20201028
Behavioral task
behavioral2
Sample
D68.vbs
Resource
win10v20201028
Malware Config
Targets
-
-
Target
D68.vbs
-
Size
1KB
-
MD5
ab9cc26b8906ebb66972fec16a3d4e23
-
SHA1
20e4f76a75bff04ea457eea160c621192445c416
-
SHA256
a1658b6be9e1b593d0bb054f4076ab1ee1dec29106dedf21104775ed29bba191
-
SHA512
ad3246a0afccf93ac2d866028489f7cedc37459ebe05277fd130100a49f45cc0e68ea6bef90217071d3de61a9c7b8b727f94fd57dce4e1f3626b2cac30169013
Score8/10-
Blocklisted process makes network request
-
Modifies WinLogon to allow AutoLogon
Enables rebooting of the machine without requiring login credentials.
-