General
-
Target
333f2e6339e933fed9c449e953308d4a27382915fa2319281721e639b689d9f3
-
Size
1.0MB
-
Sample
210518-8l5j25pe2a
-
MD5
3a1d461ec7cbc4d02a3903edab7f4a7c
-
SHA1
5aa548b0e57103f3499be80ac01ca502d141dcc4
-
SHA256
333f2e6339e933fed9c449e953308d4a27382915fa2319281721e639b689d9f3
-
SHA512
135e73d069e8554be219979b149138251a3ed3a22239aaa501fe80cae6090c74403d5831f51df0f0232140f1e5806806f7e320de6cbde66f6e91b3e1023fbf42
Malware Config
Targets
-
-
Target
333f2e6339e933fed9c449e953308d4a27382915fa2319281721e639b689d9f3
-
Size
1.0MB
-
MD5
3a1d461ec7cbc4d02a3903edab7f4a7c
-
SHA1
5aa548b0e57103f3499be80ac01ca502d141dcc4
-
SHA256
333f2e6339e933fed9c449e953308d4a27382915fa2319281721e639b689d9f3
-
SHA512
135e73d069e8554be219979b149138251a3ed3a22239aaa501fe80cae6090c74403d5831f51df0f0232140f1e5806806f7e320de6cbde66f6e91b3e1023fbf42
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Modifies WinLogon
-