General
-
Target
dotnet.exe
-
Size
473KB
-
Sample
220429-hfcxcsdfdk
-
MD5
4b3320fd9b632a9a3d3cebce1062ed52
-
SHA1
52db26f5629aa4d33837f311e5047d8206f54047
-
SHA256
00a25d4c9b7a86fddaffc5e0298662f3f153c1283b913880df1c1607c421d94f
-
SHA512
bba483ba3820e222cd49ead4718a194f131f6ddf8841df083fc58340c505b697597619bc144f7af36ed2ab56c394edbfd1a634bea6045caa9123df518a0090de
Static task
static1
Malware Config
Targets
-
-
Target
dotnet.exe
-
Size
473KB
-
MD5
4b3320fd9b632a9a3d3cebce1062ed52
-
SHA1
52db26f5629aa4d33837f311e5047d8206f54047
-
SHA256
00a25d4c9b7a86fddaffc5e0298662f3f153c1283b913880df1c1607c421d94f
-
SHA512
bba483ba3820e222cd49ead4718a194f131f6ddf8841df083fc58340c505b697597619bc144f7af36ed2ab56c394edbfd1a634bea6045caa9123df518a0090de
-
Registers COM server for autorun
-
Downloads MZ/PE file
-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-