General
-
Target
GSecurity.exe
-
Size
4.8MB
-
Sample
221204-1blyksca4z
-
MD5
90be758503895c038ea1efa43fed2c4d
-
SHA1
cc0c9170bfc00a937dc11259ca1571c4c5a38058
-
SHA256
e771df5dd3fd08f6966ba18001ef181270a3ddd601b87efc52bbfc0619f87e12
-
SHA512
09acba07c375cc331ec0b35ad0b68e5fae7e24e4ffe881b84181874566c567ff1562dfbcb780f22eaf4cf5e2ed4dea44b1119d62b13fc937638ed652420d7788
-
SSDEEP
98304:KfHtH/2bjIDzBu9O9pi4b+6MyBGFJtSxwtFhnLQ4tiwBIpU:WHtH/2biu9WpiapQjPh/I6
Static task
static1
Malware Config
Targets
-
-
Target
GSecurity.exe
-
Size
4.8MB
-
MD5
90be758503895c038ea1efa43fed2c4d
-
SHA1
cc0c9170bfc00a937dc11259ca1571c4c5a38058
-
SHA256
e771df5dd3fd08f6966ba18001ef181270a3ddd601b87efc52bbfc0619f87e12
-
SHA512
09acba07c375cc331ec0b35ad0b68e5fae7e24e4ffe881b84181874566c567ff1562dfbcb780f22eaf4cf5e2ed4dea44b1119d62b13fc937638ed652420d7788
-
SSDEEP
98304:KfHtH/2bjIDzBu9O9pi4b+6MyBGFJtSxwtFhnLQ4tiwBIpU:WHtH/2biu9WpiapQjPh/I6
-
Modifies visibility of file extensions in Explorer
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Possible privilege escalation attempt
-
Stops running service(s)
-
Loads dropped DLL
-
Modifies file permissions
-