General
-
Target
eae74e3ea64d646fa118c46f6681eb476854ca966ae83378e82753f4d6d7a312
-
Size
1.9MB
-
Sample
220919-e5dcmscccn
-
MD5
073ef891c0ceece3ef135841bcab43d6
-
SHA1
0536069c940d1a2c2b74dce4dd4a7636e9ced6fe
-
SHA256
eae74e3ea64d646fa118c46f6681eb476854ca966ae83378e82753f4d6d7a312
-
SHA512
bf0e992fd150707cd24d03605c909659db20d904663a6779acda85bb21b9f6108a1c8be886575d9a39247d711dc0117df4496f6861adefacba8149e862cd85d3
-
SSDEEP
12288:RAuUvAcFqjhuIFADQvgbWf67zMSYAA6GD1jdbNy9dVZvQOFRFZcQISm0Kax:dcFqbGDHu8zle189VFFZ8S5Kax
Malware Config
Targets
-
-
Target
eae74e3ea64d646fa118c46f6681eb476854ca966ae83378e82753f4d6d7a312
-
Size
1.9MB
-
MD5
073ef891c0ceece3ef135841bcab43d6
-
SHA1
0536069c940d1a2c2b74dce4dd4a7636e9ced6fe
-
SHA256
eae74e3ea64d646fa118c46f6681eb476854ca966ae83378e82753f4d6d7a312
-
SHA512
bf0e992fd150707cd24d03605c909659db20d904663a6779acda85bb21b9f6108a1c8be886575d9a39247d711dc0117df4496f6861adefacba8149e862cd85d3
-
SSDEEP
12288:RAuUvAcFqjhuIFADQvgbWf67zMSYAA6GD1jdbNy9dVZvQOFRFZcQISm0Kax:dcFqbGDHu8zle189VFFZ8S5Kax
Score10/10-
Modifies WinLogon for persistence
-
ASPack v2.12-2.42
Detects executables packed with ASPack v2.12-2.42
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Loads dropped DLL
-
Modifies WinLogon
-
Drops file in System32 directory
-