General
-
Target
50d213dd47b37a959872d4421c03bc0d2fc76b831f70d3eaaff0ccb0e4cca6d2
-
Size
102KB
-
Sample
221125-1m17mshb25
-
MD5
3e429ad08145105b7a15ad0537be1217
-
SHA1
75a23f734849e428471ebd2de33f71565e38a735
-
SHA256
50d213dd47b37a959872d4421c03bc0d2fc76b831f70d3eaaff0ccb0e4cca6d2
-
SHA512
1e0102415d8a99cfe4785c293aa42c2ded232bfe7dc1994af5d5e0240b3de86ddbb8ca735cd08df7dfa3717d06d0799d20e59bef311992917b696a85019ad2f3
-
SSDEEP
3072:9a4GvOcgSzC9Kxm4+oo9qZB8UHfluFzJWCwM:9xch0dFzJF
Static task
static1
Behavioral task
behavioral1
Sample
50d213dd47b37a959872d4421c03bc0d2fc76b831f70d3eaaff0ccb0e4cca6d2.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
50d213dd47b37a959872d4421c03bc0d2fc76b831f70d3eaaff0ccb0e4cca6d2.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
50d213dd47b37a959872d4421c03bc0d2fc76b831f70d3eaaff0ccb0e4cca6d2
-
Size
102KB
-
MD5
3e429ad08145105b7a15ad0537be1217
-
SHA1
75a23f734849e428471ebd2de33f71565e38a735
-
SHA256
50d213dd47b37a959872d4421c03bc0d2fc76b831f70d3eaaff0ccb0e4cca6d2
-
SHA512
1e0102415d8a99cfe4785c293aa42c2ded232bfe7dc1994af5d5e0240b3de86ddbb8ca735cd08df7dfa3717d06d0799d20e59bef311992917b696a85019ad2f3
-
SSDEEP
3072:9a4GvOcgSzC9Kxm4+oo9qZB8UHfluFzJWCwM:9xch0dFzJF
Score10/10-
Modifies WinLogon for persistence
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-