General
-
Target
d3e1e7949bb4c00ad8ae04767b56f4e775bf5e20bf389da9bcd546bd78068ec9
-
Size
47KB
-
Sample
221003-parlwsegg7
-
MD5
689327aa91485bd9ddadeec1c23f1736
-
SHA1
ac8bfb732db8413457a3c2eda254edb0284b8cc3
-
SHA256
d3e1e7949bb4c00ad8ae04767b56f4e775bf5e20bf389da9bcd546bd78068ec9
-
SHA512
4bc0044ebb089dd59ca7c852469b0a2674cad39047509b26dbc5e903179cf0625f0e11c619727275e6c18e09898700abecf5c1938a246fd9d7f25888547c6c32
-
SSDEEP
768:Abk2joru2vOmjzb0wv94Go8krqiO/xjN2QVDzFVYX2KzgmG9ZE:AbbG0weLrqH/W4FVYX2Kzgmp
Static task
static1
Behavioral task
behavioral1
Sample
d3e1e7949bb4c00ad8ae04767b56f4e775bf5e20bf389da9bcd546bd78068ec9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
d3e1e7949bb4c00ad8ae04767b56f4e775bf5e20bf389da9bcd546bd78068ec9.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
d3e1e7949bb4c00ad8ae04767b56f4e775bf5e20bf389da9bcd546bd78068ec9
-
Size
47KB
-
MD5
689327aa91485bd9ddadeec1c23f1736
-
SHA1
ac8bfb732db8413457a3c2eda254edb0284b8cc3
-
SHA256
d3e1e7949bb4c00ad8ae04767b56f4e775bf5e20bf389da9bcd546bd78068ec9
-
SHA512
4bc0044ebb089dd59ca7c852469b0a2674cad39047509b26dbc5e903179cf0625f0e11c619727275e6c18e09898700abecf5c1938a246fd9d7f25888547c6c32
-
SSDEEP
768:Abk2joru2vOmjzb0wv94Go8krqiO/xjN2QVDzFVYX2KzgmG9ZE:AbbG0weLrqH/W4FVYX2Kzgmp
Score10/10-
Modifies WinLogon for persistence
-
Deletes itself
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-