General
-
Target
f9b5b222b0911d095cdae3ae34c5c3f647ff0c08b40246fcabd3e7a03abcbb30
-
Size
1.7MB
-
Sample
210923-hqyxksaafq
-
MD5
8e6fb813fdbfb1b6815c8f7c47a5ac13
-
SHA1
4b8c92a3a6c63d6c296b0c121619b23599168030
-
SHA256
f9b5b222b0911d095cdae3ae34c5c3f647ff0c08b40246fcabd3e7a03abcbb30
-
SHA512
374fab3c87d3e03fd14081939833b1ac6192d7c35d86e6fef936bc6fd15f80e4b9f6fa09dd1bf8ba60b75f97e5603783c1b28fc673e47a4c9bc44bbaebdf28f4
Static task
static1
Behavioral task
behavioral1
Sample
f9b5b222b0911d095cdae3ae34c5c3f647ff0c08b40246fcabd3e7a03abcbb30.exe
Resource
win7-en-20210920
Malware Config
Targets
-
-
Target
f9b5b222b0911d095cdae3ae34c5c3f647ff0c08b40246fcabd3e7a03abcbb30
-
Size
1.7MB
-
MD5
8e6fb813fdbfb1b6815c8f7c47a5ac13
-
SHA1
4b8c92a3a6c63d6c296b0c121619b23599168030
-
SHA256
f9b5b222b0911d095cdae3ae34c5c3f647ff0c08b40246fcabd3e7a03abcbb30
-
SHA512
374fab3c87d3e03fd14081939833b1ac6192d7c35d86e6fef936bc6fd15f80e4b9f6fa09dd1bf8ba60b75f97e5603783c1b28fc673e47a4c9bc44bbaebdf28f4
-
Modifies WinLogon for persistence
-
Modifies security service
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-