General
-
Target
5b5fb7165b3b08c4bb203335cca2a8b10863ce3624ea5382771092967660a14e
-
Size
890KB
-
Sample
220802-aa5fesbgfn
-
MD5
39235e9dc0c41d1c834311205707decb
-
SHA1
fbd32d7135ef784e94b8b0271b846392f7dce36e
-
SHA256
5b5fb7165b3b08c4bb203335cca2a8b10863ce3624ea5382771092967660a14e
-
SHA512
93cb831f6c1a085741fc8e70dd19ac37d3a76e7b3d5a0f6798c6c8ae8e4e1b3ceb9d88be16438739f31528baa272179c4d0f07aad3668d73c8f090ee10114001
Static task
static1
Behavioral task
behavioral1
Sample
5b5fb7165b3b08c4bb203335cca2a8b10863ce3624ea5382771092967660a14e.exe
Resource
win7-20220718-en
Behavioral task
behavioral2
Sample
5b5fb7165b3b08c4bb203335cca2a8b10863ce3624ea5382771092967660a14e.exe
Resource
win10v2004-20220721-en
Malware Config
Targets
-
-
Target
5b5fb7165b3b08c4bb203335cca2a8b10863ce3624ea5382771092967660a14e
-
Size
890KB
-
MD5
39235e9dc0c41d1c834311205707decb
-
SHA1
fbd32d7135ef784e94b8b0271b846392f7dce36e
-
SHA256
5b5fb7165b3b08c4bb203335cca2a8b10863ce3624ea5382771092967660a14e
-
SHA512
93cb831f6c1a085741fc8e70dd19ac37d3a76e7b3d5a0f6798c6c8ae8e4e1b3ceb9d88be16438739f31528baa272179c4d0f07aad3668d73c8f090ee10114001
Score10/10-
Modifies WinLogon for persistence
-
XMRig Miner payload
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-