General
-
Target
856087d40d78a2c45cce1f981d96a43804d957cfce78150c91a5f4c607ee6eaf
-
Size
420KB
-
Sample
210517-7nhdc88pns
-
MD5
3635d1f004df4066a6f406c60cfd77ce
-
SHA1
4c5f08dfa51ecb27a70affa46182d556c1c24f7a
-
SHA256
856087d40d78a2c45cce1f981d96a43804d957cfce78150c91a5f4c607ee6eaf
-
SHA512
7280d4c5347be9538bddaea8b83a46667720330b501a6d77e61e970d34ce065f234c5dfa099b11a8136a9cd4f451eb537d1af91c02533915b2867331c2e64655
Malware Config
Targets
-
-
Target
856087d40d78a2c45cce1f981d96a43804d957cfce78150c91a5f4c607ee6eaf
-
Size
420KB
-
MD5
3635d1f004df4066a6f406c60cfd77ce
-
SHA1
4c5f08dfa51ecb27a70affa46182d556c1c24f7a
-
SHA256
856087d40d78a2c45cce1f981d96a43804d957cfce78150c91a5f4c607ee6eaf
-
SHA512
7280d4c5347be9538bddaea8b83a46667720330b501a6d77e61e970d34ce065f234c5dfa099b11a8136a9cd4f451eb537d1af91c02533915b2867331c2e64655
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Modifies WinLogon
-