General
-
Target
ec99f7ce67dce348254e52fb194ac592446e0fceff485a62a95f4ce85d92dd3c
-
Size
900KB
-
Sample
221130-yhmscach3y
-
MD5
75f6cc3b9d91fb36827052daa68ab459
-
SHA1
44b85c2b29c6b84fa020c9aead696e588877cb0e
-
SHA256
ec99f7ce67dce348254e52fb194ac592446e0fceff485a62a95f4ce85d92dd3c
-
SHA512
0b962a953c5057de44af5d1d6a362408901d5505d4a71554138027adeb7a26027076259fea474e9fa8fa966a26c66f32b4585824be803f914258018da37cebab
-
SSDEEP
12288:6yu8gCTiJiYNadtDIC4W43ksPZE5SqG2VcV8XX7xe9DPBi3/2Kmm97Wb9cd:6yu8gCTX8aTUC5akaa5qZV8Xrg9Deb7z
Malware Config
Targets
-
-
Target
ec99f7ce67dce348254e52fb194ac592446e0fceff485a62a95f4ce85d92dd3c
-
Size
900KB
-
MD5
75f6cc3b9d91fb36827052daa68ab459
-
SHA1
44b85c2b29c6b84fa020c9aead696e588877cb0e
-
SHA256
ec99f7ce67dce348254e52fb194ac592446e0fceff485a62a95f4ce85d92dd3c
-
SHA512
0b962a953c5057de44af5d1d6a362408901d5505d4a71554138027adeb7a26027076259fea474e9fa8fa966a26c66f32b4585824be803f914258018da37cebab
-
SSDEEP
12288:6yu8gCTiJiYNadtDIC4W43ksPZE5SqG2VcV8XX7xe9DPBi3/2Kmm97Wb9cd:6yu8gCTX8aTUC5akaa5qZV8Xrg9Deb7z
Score8/10-
Executes dropped EXE
-
Possible privilege escalation attempt
-
Sets DLL path for service in the registry
-
Sets service image path in registry
-
Loads dropped DLL
-
Modifies file permissions
-
Adds Run key to start application
-
Drops file in System32 directory
-