General
-
Target
fb8d107dad7e2239990da432d97cbeee2805b4a100a0b6d31e5963aeeffcf5d4
-
Size
103KB
-
Sample
221123-pt1nxafd3z
-
MD5
c379d1c79e6de48bd1b0e5568c1cf485
-
SHA1
12fe4832b7a14ab21a314df576ec35fa8210f43d
-
SHA256
fb8d107dad7e2239990da432d97cbeee2805b4a100a0b6d31e5963aeeffcf5d4
-
SHA512
b3b1b1203e173782d185738964991a7fbb6e7133900e1fed6990ef73c912ee1e9f7844089f418b6e3d9659495cb16c58e4cc3a27f3c656b46a75a15aaefd6af5
-
SSDEEP
3072:zX3ujCPlXF/mIUJhuyTwiRSQXmNINh5B4:z5lXB+m0G
Static task
static1
Behavioral task
behavioral1
Sample
fb8d107dad7e2239990da432d97cbeee2805b4a100a0b6d31e5963aeeffcf5d4.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
fb8d107dad7e2239990da432d97cbeee2805b4a100a0b6d31e5963aeeffcf5d4.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
fb8d107dad7e2239990da432d97cbeee2805b4a100a0b6d31e5963aeeffcf5d4
-
Size
103KB
-
MD5
c379d1c79e6de48bd1b0e5568c1cf485
-
SHA1
12fe4832b7a14ab21a314df576ec35fa8210f43d
-
SHA256
fb8d107dad7e2239990da432d97cbeee2805b4a100a0b6d31e5963aeeffcf5d4
-
SHA512
b3b1b1203e173782d185738964991a7fbb6e7133900e1fed6990ef73c912ee1e9f7844089f418b6e3d9659495cb16c58e4cc3a27f3c656b46a75a15aaefd6af5
-
SSDEEP
3072:zX3ujCPlXF/mIUJhuyTwiRSQXmNINh5B4:z5lXB+m0G
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Modifies WinLogon
-
Suspicious use of SetThreadContext
-