General
-
Target
8b68b523321199f5205d532860dd65ce444235a688c1771b147fd88a432f1e20
-
Size
691KB
-
Sample
210518-kmjs6bn4ke
-
MD5
3ae8274d34fb349448d7c6b7e735bc68
-
SHA1
7f47a0075c445b26113e7122a77d9313e9770056
-
SHA256
8b68b523321199f5205d532860dd65ce444235a688c1771b147fd88a432f1e20
-
SHA512
c7729bca31a7d1da7a204e76a95a6de39fbf7bdbecb2772971a64053198aa993f8b156962f122c460ef8f39a73b2331d7f5725c7175b84fbb475ed42d71535e9
Malware Config
Targets
-
-
Target
8b68b523321199f5205d532860dd65ce444235a688c1771b147fd88a432f1e20
-
Size
691KB
-
MD5
3ae8274d34fb349448d7c6b7e735bc68
-
SHA1
7f47a0075c445b26113e7122a77d9313e9770056
-
SHA256
8b68b523321199f5205d532860dd65ce444235a688c1771b147fd88a432f1e20
-
SHA512
c7729bca31a7d1da7a204e76a95a6de39fbf7bdbecb2772971a64053198aa993f8b156962f122c460ef8f39a73b2331d7f5725c7175b84fbb475ed42d71535e9
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Modifies WinLogon
-