General
-
Target
6c3ecd20c787e6e63a5afbbc79b1fae9cf975acb2cd200db986c43e3b315d66a
-
Size
401KB
-
Sample
210518-3x5gj47jr6
-
MD5
0fd3dbe352cfd1938160279739ea3e2c
-
SHA1
3a962de29533f945f8fbecc9830085850c667b91
-
SHA256
6c3ecd20c787e6e63a5afbbc79b1fae9cf975acb2cd200db986c43e3b315d66a
-
SHA512
b818d669c54e1e77f8388da48442993859ad29ff0388cfb480f4077135318abd2a87ebd6d0455c09c7e8547001ed0363dbe88bf4a5d9493fc4a434fb001a5629
Static task
static1
Behavioral task
behavioral1
Sample
6c3ecd20c787e6e63a5afbbc79b1fae9cf975acb2cd200db986c43e3b315d66a.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
6c3ecd20c787e6e63a5afbbc79b1fae9cf975acb2cd200db986c43e3b315d66a.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
6c3ecd20c787e6e63a5afbbc79b1fae9cf975acb2cd200db986c43e3b315d66a
-
Size
401KB
-
MD5
0fd3dbe352cfd1938160279739ea3e2c
-
SHA1
3a962de29533f945f8fbecc9830085850c667b91
-
SHA256
6c3ecd20c787e6e63a5afbbc79b1fae9cf975acb2cd200db986c43e3b315d66a
-
SHA512
b818d669c54e1e77f8388da48442993859ad29ff0388cfb480f4077135318abd2a87ebd6d0455c09c7e8547001ed0363dbe88bf4a5d9493fc4a434fb001a5629
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Modifies WinLogon
-