General
-
Target
276cb9f91e085bc073025fffcb7881f1bce99d75244089e9b4c0bc743bc4a2ec
-
Size
163KB
-
Sample
221123-r4hxysdc7z
-
MD5
18f1df4b40dc6a070db0fe01479c26e9
-
SHA1
24512cdd1c7d9faf21736d89b420654a44d6d630
-
SHA256
276cb9f91e085bc073025fffcb7881f1bce99d75244089e9b4c0bc743bc4a2ec
-
SHA512
7f616f5c26e1af5101b50b7ca4a227d6b97a471e64b84ba82ac8605dcc943ea030cbc12472ca1fcafc7b931e07c3cc8fc0c318a1f1faa4cc0a4d2062e734d311
-
SSDEEP
3072:5QRGNshsXR9Kiryy4XbXY9DsqCAYy2IK+z0Dx/RO:UGNKsXR914YpsxMrz0Dx/E
Static task
static1
Behavioral task
behavioral1
Sample
276cb9f91e085bc073025fffcb7881f1bce99d75244089e9b4c0bc743bc4a2ec.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
276cb9f91e085bc073025fffcb7881f1bce99d75244089e9b4c0bc743bc4a2ec.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
276cb9f91e085bc073025fffcb7881f1bce99d75244089e9b4c0bc743bc4a2ec
-
Size
163KB
-
MD5
18f1df4b40dc6a070db0fe01479c26e9
-
SHA1
24512cdd1c7d9faf21736d89b420654a44d6d630
-
SHA256
276cb9f91e085bc073025fffcb7881f1bce99d75244089e9b4c0bc743bc4a2ec
-
SHA512
7f616f5c26e1af5101b50b7ca4a227d6b97a471e64b84ba82ac8605dcc943ea030cbc12472ca1fcafc7b931e07c3cc8fc0c318a1f1faa4cc0a4d2062e734d311
-
SSDEEP
3072:5QRGNshsXR9Kiryy4XbXY9DsqCAYy2IK+z0Dx/RO:UGNKsXR914YpsxMrz0Dx/E
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Modifies WinLogon
-
Suspicious use of SetThreadContext
-