General
-
Target
6f22976c9375cb9fdfc1d1b7bb266b987c541e14475f96bc84f123c76ccfd3e6
-
Size
292KB
-
Sample
221204-k1bk5seb25
-
MD5
c92e75fe482f07454895438c41a940c7
-
SHA1
c4fe13ea6ec89d39f0e26f1c0e1856a004680853
-
SHA256
6f22976c9375cb9fdfc1d1b7bb266b987c541e14475f96bc84f123c76ccfd3e6
-
SHA512
0fdf41ca5333035bd88d546f5623820ef5852d98abb5266c15dd4c0a640e62505a08abddfee32118fe5e758ab4191ca36c1c925603748164807f55cd258a5372
-
SSDEEP
3072:Fbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyAgQ6:Fbl5RKgOGqml80FrgTRHGvJI08iYuQ6
Malware Config
Targets
-
-
Target
6f22976c9375cb9fdfc1d1b7bb266b987c541e14475f96bc84f123c76ccfd3e6
-
Size
292KB
-
MD5
c92e75fe482f07454895438c41a940c7
-
SHA1
c4fe13ea6ec89d39f0e26f1c0e1856a004680853
-
SHA256
6f22976c9375cb9fdfc1d1b7bb266b987c541e14475f96bc84f123c76ccfd3e6
-
SHA512
0fdf41ca5333035bd88d546f5623820ef5852d98abb5266c15dd4c0a640e62505a08abddfee32118fe5e758ab4191ca36c1c925603748164807f55cd258a5372
-
SSDEEP
3072:Fbluj2AgK1S4lQ/qml80FqCKmgTRHGvcqRI0NU/iYyAgQ6:Fbl5RKgOGqml80FrgTRHGvJI08iYuQ6
Score10/10-
Modifies WinLogon for persistence
-
Modifies visiblity of hidden/system files in Explorer
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Loads dropped DLL
-
Adds Run key to start application
-