General
-
Target
0c8ad0b00519d2d523c812752e750a91f6d1214650e9eb67e4934ff6f78c3db4
-
Size
880KB
-
Sample
221126-jj8zmsfg31
-
MD5
8595c2885870dca6bef52fe165856534
-
SHA1
ed5c39bc8d20a2c0fb3803924e9c39b55969692d
-
SHA256
0c8ad0b00519d2d523c812752e750a91f6d1214650e9eb67e4934ff6f78c3db4
-
SHA512
6153a5d2fcdadb858dc3311616482e9c016de968b022a21a830ef1ab553f5d16c4da2253259376c40b0a39b35533a5e076e449855293d32e2e6e53ab616e51c5
-
SSDEEP
12288:zH7Wcjdc/r2sxxiPGGAOOPSXDV8ClgVYhX5FSsf8QsdklwWvBS43G4/b2WAw:zbCj2sObHtqQ4QrwWvBv
Static task
static1
Behavioral task
behavioral1
Sample
0c8ad0b00519d2d523c812752e750a91f6d1214650e9eb67e4934ff6f78c3db4.exe
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
0c8ad0b00519d2d523c812752e750a91f6d1214650e9eb67e4934ff6f78c3db4
-
Size
880KB
-
MD5
8595c2885870dca6bef52fe165856534
-
SHA1
ed5c39bc8d20a2c0fb3803924e9c39b55969692d
-
SHA256
0c8ad0b00519d2d523c812752e750a91f6d1214650e9eb67e4934ff6f78c3db4
-
SHA512
6153a5d2fcdadb858dc3311616482e9c016de968b022a21a830ef1ab553f5d16c4da2253259376c40b0a39b35533a5e076e449855293d32e2e6e53ab616e51c5
-
SSDEEP
12288:zH7Wcjdc/r2sxxiPGGAOOPSXDV8ClgVYhX5FSsf8QsdklwWvBS43G4/b2WAw:zbCj2sObHtqQ4QrwWvBv
-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-