General
-
Target
307f3226b8dca79c6fb29b3f41a543fd1bb896d00fe64e165f2461134dde9687
-
Size
118KB
-
Sample
221125-dpkw4sgc99
-
MD5
ba7e5f6669665efa112abc5335c14d00
-
SHA1
bb78c4f8dcf0c557302389e4297763f7cd1dbfc8
-
SHA256
307f3226b8dca79c6fb29b3f41a543fd1bb896d00fe64e165f2461134dde9687
-
SHA512
fe62aa93d4f4a29a4031d3b60e5c2a25df86a59e3ab01280e9acf5c56eabb8d6e0b4ad0a4bc9bdbfd44d93cb405813ae4c76be2dfaa4f0580d69eb052a4147cd
-
SSDEEP
3072:0QJrsw+W2cjUOgngIHy9yrT5CtHvazixI6s:0Qh+ySnQtHvaz2I1
Static task
static1
Behavioral task
behavioral1
Sample
307f3226b8dca79c6fb29b3f41a543fd1bb896d00fe64e165f2461134dde9687.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
307f3226b8dca79c6fb29b3f41a543fd1bb896d00fe64e165f2461134dde9687.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
307f3226b8dca79c6fb29b3f41a543fd1bb896d00fe64e165f2461134dde9687
-
Size
118KB
-
MD5
ba7e5f6669665efa112abc5335c14d00
-
SHA1
bb78c4f8dcf0c557302389e4297763f7cd1dbfc8
-
SHA256
307f3226b8dca79c6fb29b3f41a543fd1bb896d00fe64e165f2461134dde9687
-
SHA512
fe62aa93d4f4a29a4031d3b60e5c2a25df86a59e3ab01280e9acf5c56eabb8d6e0b4ad0a4bc9bdbfd44d93cb405813ae4c76be2dfaa4f0580d69eb052a4147cd
-
SSDEEP
3072:0QJrsw+W2cjUOgngIHy9yrT5CtHvazixI6s:0Qh+ySnQtHvaz2I1
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Blocklisted process makes network request
-
Disables taskbar notifications via registry modification
-
Suspicious use of SetThreadContext
-