General
-
Target
FileOpenInstaller.exe
-
Size
6.8MB
-
Sample
210421-htykvh22qs
-
MD5
ab92733eecc19ba622bea402e36217d7
-
SHA1
0b989591194acec8782070b4d92db2963bfb17a0
-
SHA256
1363a87825c3c707e04e181932702eb2258a9b87adfded21909ea58b722047e5
-
SHA512
382b6fb60bbc4e8f9f8f0b8615f3bab247546f209aec35b2cab8a2038216319067a14073f1f0df8558183261fb387fb7bfb519d2052aa5bcfb09980a64f24213
Score
8/10
Malware Config
Targets
-
-
Target
FileOpenInstaller.exe
-
Size
6.8MB
-
MD5
ab92733eecc19ba622bea402e36217d7
-
SHA1
0b989591194acec8782070b4d92db2963bfb17a0
-
SHA256
1363a87825c3c707e04e181932702eb2258a9b87adfded21909ea58b722047e5
-
SHA512
382b6fb60bbc4e8f9f8f0b8615f3bab247546f209aec35b2cab8a2038216319067a14073f1f0df8558183261fb387fb7bfb519d2052aa5bcfb09980a64f24213
Score8/10-
Creates new service(s)
-
Executes dropped EXE
-
Sets service image path in registry
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-