General
-
Target
fe93726258af804e0ee3d0f285e712552da8a65579234d44f0a1a0820b418564
-
Size
946KB
-
Sample
221126-kdq3bahg6x
-
MD5
68e2b5e2d9f8c97fef076a22b680bb1d
-
SHA1
8b8a7b15c73c8cf416f4fc40b1301599d5b78ded
-
SHA256
fe93726258af804e0ee3d0f285e712552da8a65579234d44f0a1a0820b418564
-
SHA512
b22423284ff1f8cc2dd10ed1cd9fb23471d19ce2b2afffff7396bdc5ba2e7a45a30cafa4573311aaae03e6e22aa4b3168ec14db2a9eecab8f420e689e316f612
-
SSDEEP
24576:Lbj1xNTf9fK3X2LMCBEcOaFxLpkaF9woZouHC:nV9flckRp3XZoYC
Static task
static1
Behavioral task
behavioral1
Sample
fe93726258af804e0ee3d0f285e712552da8a65579234d44f0a1a0820b418564.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
fe93726258af804e0ee3d0f285e712552da8a65579234d44f0a1a0820b418564.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
fe93726258af804e0ee3d0f285e712552da8a65579234d44f0a1a0820b418564
-
Size
946KB
-
MD5
68e2b5e2d9f8c97fef076a22b680bb1d
-
SHA1
8b8a7b15c73c8cf416f4fc40b1301599d5b78ded
-
SHA256
fe93726258af804e0ee3d0f285e712552da8a65579234d44f0a1a0820b418564
-
SHA512
b22423284ff1f8cc2dd10ed1cd9fb23471d19ce2b2afffff7396bdc5ba2e7a45a30cafa4573311aaae03e6e22aa4b3168ec14db2a9eecab8f420e689e316f612
-
SSDEEP
24576:Lbj1xNTf9fK3X2LMCBEcOaFxLpkaF9woZouHC:nV9flckRp3XZoYC
Score10/10-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Drops startup file
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-