General
-
Target
ba6e61bf6527a84527711600e3a577a1f648308c8b0ba5aed09935dbed3f8fad
-
Size
1.5MB
-
Sample
221126-kyhaxaaf3w
-
MD5
44337c0892b51caf7a8c361773f9b20a
-
SHA1
5cb1c78ba10e533f3fd286a85d65da9713ab4c4a
-
SHA256
ba6e61bf6527a84527711600e3a577a1f648308c8b0ba5aed09935dbed3f8fad
-
SHA512
100aabac2017fc8bd8181e6ba7c232bf9a773c64cbec3225bd27da1ed13b28259f9e49fec065cc17808cf861465746c7a185b0452a971c1ff13ef927a9c88e92
-
SSDEEP
24576:NM3q4FxNTcsDWDAG6R9CYu8ZnxuZm6i/hlY0MLZDRJweuaMTSDPoW:+37Fg167n1/LiLOcMTSbo
Malware Config
Targets
-
-
Target
ba6e61bf6527a84527711600e3a577a1f648308c8b0ba5aed09935dbed3f8fad
-
Size
1.5MB
-
MD5
44337c0892b51caf7a8c361773f9b20a
-
SHA1
5cb1c78ba10e533f3fd286a85d65da9713ab4c4a
-
SHA256
ba6e61bf6527a84527711600e3a577a1f648308c8b0ba5aed09935dbed3f8fad
-
SHA512
100aabac2017fc8bd8181e6ba7c232bf9a773c64cbec3225bd27da1ed13b28259f9e49fec065cc17808cf861465746c7a185b0452a971c1ff13ef927a9c88e92
-
SSDEEP
24576:NM3q4FxNTcsDWDAG6R9CYu8ZnxuZm6i/hlY0MLZDRJweuaMTSDPoW:+37Fg167n1/LiLOcMTSbo
Score10/10-
Modifies WinLogon for persistence
-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Adds Run key to start application
-
Modifies WinLogon
-
Drops file in System32 directory
-