General
-
Target
4b20a982607896306d1cd9db1e36c7f0b867e4bbda851d66f5a6cb62df11fbcc
-
Size
350KB
-
Sample
221003-3gyknscca8
-
MD5
391233b3c78fd9b2a7a869e078b84980
-
SHA1
793e261a01b2cc15d168f5bfb5a84c4efb67e7eb
-
SHA256
4b20a982607896306d1cd9db1e36c7f0b867e4bbda851d66f5a6cb62df11fbcc
-
SHA512
260e1bb17b0086cf4fca441a0d733b1d740b3ad788a375fbfa4a47b13db99ea2d7e745e1ba902bad2806a8becaa23e3907037b085cf9be93c65bcb08e0875c69
-
SSDEEP
6144:TyXu7IEBSsQ9ElMwm60lmqs7MTRGA3h3GVqdppJXEGhBukJF/KAwxFUOWdEmh:T3BdQLL4BE93NGVYZX9BukJlwxSJdEm
Behavioral task
behavioral1
Sample
4b20a982607896306d1cd9db1e36c7f0b867e4bbda851d66f5a6cb62df11fbcc.exe
Resource
win7-20220901-en
Malware Config
Targets
-
-
Target
4b20a982607896306d1cd9db1e36c7f0b867e4bbda851d66f5a6cb62df11fbcc
-
Size
350KB
-
MD5
391233b3c78fd9b2a7a869e078b84980
-
SHA1
793e261a01b2cc15d168f5bfb5a84c4efb67e7eb
-
SHA256
4b20a982607896306d1cd9db1e36c7f0b867e4bbda851d66f5a6cb62df11fbcc
-
SHA512
260e1bb17b0086cf4fca441a0d733b1d740b3ad788a375fbfa4a47b13db99ea2d7e745e1ba902bad2806a8becaa23e3907037b085cf9be93c65bcb08e0875c69
-
SSDEEP
6144:TyXu7IEBSsQ9ElMwm60lmqs7MTRGA3h3GVqdppJXEGhBukJF/KAwxFUOWdEmh:T3BdQLL4BE93NGVYZX9BukJlwxSJdEm
-
Drops file in Drivers directory
-
Possible privilege escalation attempt
-
Sets service image path in registry
-
Deletes itself
-
Modifies file permissions
-
Drops file in System32 directory
-