General
-
Target
1cce551a876cf09086411743ace27f61c88da62eb89f898e1648818cf39f0e10
-
Size
987KB
-
Sample
221124-m4ywysch4w
-
MD5
10404519899160e813d3b453372a4901
-
SHA1
034c89effe2144beac5170948516d508d554b778
-
SHA256
1cce551a876cf09086411743ace27f61c88da62eb89f898e1648818cf39f0e10
-
SHA512
98414b5ada492bcf62ba0e16109324ad580f3a6cde07a23a9635db9d8d3b59ca891a04beb2f8f3ad47f005da87a4619af6388464488b27fc30f9d07e89320572
-
SSDEEP
24576:14lavt0LkLL9IMixoEgeaG5eQYExX9q9MmCS:Mkwkn9IMHeaGM2faPCS
Malware Config
Targets
-
-
Target
1cce551a876cf09086411743ace27f61c88da62eb89f898e1648818cf39f0e10
-
Size
987KB
-
MD5
10404519899160e813d3b453372a4901
-
SHA1
034c89effe2144beac5170948516d508d554b778
-
SHA256
1cce551a876cf09086411743ace27f61c88da62eb89f898e1648818cf39f0e10
-
SHA512
98414b5ada492bcf62ba0e16109324ad580f3a6cde07a23a9635db9d8d3b59ca891a04beb2f8f3ad47f005da87a4619af6388464488b27fc30f9d07e89320572
-
SSDEEP
24576:14lavt0LkLL9IMixoEgeaG5eQYExX9q9MmCS:Mkwkn9IMHeaGM2faPCS
Score8/10-
Sets file execution options in registry
-
Adds Run key to start application
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-