General
-
Target
a4c33306c96885a0fd361109abeb119dfb7184626de8b1212c29de6cea98c0ad
-
Size
217KB
-
Sample
221125-h5wqrsae99
-
MD5
e0df9f70ca00e37890f7e40fccfe9ea2
-
SHA1
1564235ebf363f9a3e070345deee3f57ff11ca69
-
SHA256
a4c33306c96885a0fd361109abeb119dfb7184626de8b1212c29de6cea98c0ad
-
SHA512
4994c3b33e4f93b31e2bc3acab96e03dd146ef037029643c105b94008d9ac5d8770a9cecc536b3fe51976dc778ab7a74570749652409da5a925b48ab93773ad8
-
SSDEEP
3072:kZdTTTcoPU+O2JKLloghCS2uSJ9SzHMOy8UUMhWXsLd2:sdTPNP9TJKLfCSBSNhWXs0
Static task
static1
Behavioral task
behavioral1
Sample
a4c33306c96885a0fd361109abeb119dfb7184626de8b1212c29de6cea98c0ad.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
a4c33306c96885a0fd361109abeb119dfb7184626de8b1212c29de6cea98c0ad.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
a4c33306c96885a0fd361109abeb119dfb7184626de8b1212c29de6cea98c0ad
-
Size
217KB
-
MD5
e0df9f70ca00e37890f7e40fccfe9ea2
-
SHA1
1564235ebf363f9a3e070345deee3f57ff11ca69
-
SHA256
a4c33306c96885a0fd361109abeb119dfb7184626de8b1212c29de6cea98c0ad
-
SHA512
4994c3b33e4f93b31e2bc3acab96e03dd146ef037029643c105b94008d9ac5d8770a9cecc536b3fe51976dc778ab7a74570749652409da5a925b48ab93773ad8
-
SSDEEP
3072:kZdTTTcoPU+O2JKLloghCS2uSJ9SzHMOy8UUMhWXsLd2:sdTPNP9TJKLfCSBSNhWXs0
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Modifies WinLogon
-
Suspicious use of SetThreadContext
-