General
-
Target
5154aed1c1c8c84c2551daa04b458fecccfbb2b01f90d529191aefb9ae44c880
-
Size
299KB
-
Sample
221125-jrvf8acb76
-
MD5
3aa75ed47341725056cb995f6bf3a40d
-
SHA1
b504c2450856046fc2e66041c20a65ffce7cac29
-
SHA256
5154aed1c1c8c84c2551daa04b458fecccfbb2b01f90d529191aefb9ae44c880
-
SHA512
00427b10f7572adb953e38e61aed6c0abbbf0e9b988ab65411cc975bad0fd18a49a37621dd229f4437388ca8e992efc79cdf444eae73790e41938570ea0f738b
-
SSDEEP
3072:NU6nXNyVa/Cb5Fr6LF3w41VTg3yHYilStAg0FuNmyDjCdCyADnEtMPpXlx:O4yVaauR3w2VTg3+jlStAOwCRDe+Fb
Static task
static1
Behavioral task
behavioral1
Sample
5154aed1c1c8c84c2551daa04b458fecccfbb2b01f90d529191aefb9ae44c880.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
5154aed1c1c8c84c2551daa04b458fecccfbb2b01f90d529191aefb9ae44c880.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
5154aed1c1c8c84c2551daa04b458fecccfbb2b01f90d529191aefb9ae44c880
-
Size
299KB
-
MD5
3aa75ed47341725056cb995f6bf3a40d
-
SHA1
b504c2450856046fc2e66041c20a65ffce7cac29
-
SHA256
5154aed1c1c8c84c2551daa04b458fecccfbb2b01f90d529191aefb9ae44c880
-
SHA512
00427b10f7572adb953e38e61aed6c0abbbf0e9b988ab65411cc975bad0fd18a49a37621dd229f4437388ca8e992efc79cdf444eae73790e41938570ea0f738b
-
SSDEEP
3072:NU6nXNyVa/Cb5Fr6LF3w41VTg3yHYilStAg0FuNmyDjCdCyADnEtMPpXlx:O4yVaauR3w2VTg3+jlStAOwCRDe+Fb
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Modifies WinLogon
-
Suspicious use of SetThreadContext
-