General
-
Target
8c230b2a8590d0b8098b01cf727f392593f7e4aaa7e7088bb8ffacd3a72616ca
-
Size
125KB
-
Sample
221123-qz9pfaad4s
-
MD5
a09512032782e9629eac39b71f666c70
-
SHA1
b459dee03d4e70b7aa3bb85a22834162b10a5fd6
-
SHA256
8c230b2a8590d0b8098b01cf727f392593f7e4aaa7e7088bb8ffacd3a72616ca
-
SHA512
c63fc3f753d1afb7a243a594d42f0dbfb1f26e1bb8d11c11c474e05f73e95dcd1a2eb00bd5e89a91a623ee537b67c71ce68870257af2f52f36d99db96298e79b
-
SSDEEP
1536:2ZeNavxhkC0FNGrX8CSFEijmeybdJCM8cHR/d6IVtNY9QEmZzplWQRkY/xLB/:2ZeNa5ITmeyrCMdH2AY7SlWQRP/xLB/
Static task
static1
Behavioral task
behavioral1
Sample
8c230b2a8590d0b8098b01cf727f392593f7e4aaa7e7088bb8ffacd3a72616ca.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
8c230b2a8590d0b8098b01cf727f392593f7e4aaa7e7088bb8ffacd3a72616ca.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
8c230b2a8590d0b8098b01cf727f392593f7e4aaa7e7088bb8ffacd3a72616ca
-
Size
125KB
-
MD5
a09512032782e9629eac39b71f666c70
-
SHA1
b459dee03d4e70b7aa3bb85a22834162b10a5fd6
-
SHA256
8c230b2a8590d0b8098b01cf727f392593f7e4aaa7e7088bb8ffacd3a72616ca
-
SHA512
c63fc3f753d1afb7a243a594d42f0dbfb1f26e1bb8d11c11c474e05f73e95dcd1a2eb00bd5e89a91a623ee537b67c71ce68870257af2f52f36d99db96298e79b
-
SSDEEP
1536:2ZeNavxhkC0FNGrX8CSFEijmeybdJCM8cHR/d6IVtNY9QEmZzplWQRkY/xLB/:2ZeNa5ITmeyrCMdH2AY7SlWQRP/xLB/
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Modifies WinLogon
-
Suspicious use of SetThreadContext
-