General
-
Target
dottwitch.exe
-
Size
78KB
-
Sample
210305-m9ms8fsmps
-
MD5
19ca826fb47911d0f28d5f3a581fa04e
-
SHA1
7f68c84eee75ee8a2357b570140466cdcbacc8eb
-
SHA256
93b99f8ca3f18926d2405d337bf047fb419c8bfd898aeab2f74108833fca85ae
-
SHA512
1f4057c5bcd74be122e068ac3a23a8d802aa19136146a06d47720ce797c51ce4982d6e9e10034b5192122f0c0f7f44c199d3146af63eded78cb08c8f1b6bf532
Static task
static1
Behavioral task
behavioral1
Sample
dottwitch.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
dottwitch.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
dottwitch.exe
-
Size
78KB
-
MD5
19ca826fb47911d0f28d5f3a581fa04e
-
SHA1
7f68c84eee75ee8a2357b570140466cdcbacc8eb
-
SHA256
93b99f8ca3f18926d2405d337bf047fb419c8bfd898aeab2f74108833fca85ae
-
SHA512
1f4057c5bcd74be122e068ac3a23a8d802aa19136146a06d47720ce797c51ce4982d6e9e10034b5192122f0c0f7f44c199d3146af63eded78cb08c8f1b6bf532
Score8/10-
Modifies WinLogon to allow AutoLogon
Enables rebooting of the machine without requiring login credentials.
-