General
-
Target
1b0b64002a4a4779d44a281f98d55707c5b8a64a8c8c9defdab48b1b0b1df554
-
Size
4.1MB
-
Sample
230203-ka4t1age5v
-
MD5
a5924c8917b1e75b34a9d38be066e131
-
SHA1
46c62754bb681c311269ccece3ec78e7a299908f
-
SHA256
1b0b64002a4a4779d44a281f98d55707c5b8a64a8c8c9defdab48b1b0b1df554
-
SHA512
125a2994f337ab1a40c4ae75c24f2f6f2a81a94e14d1a2dbda6037f0e7ea0827ba7656648a6f6f5048f3b33abe5464d6fd690955400b8d76aafd91edb8e00bd6
-
SSDEEP
98304:716yO65OGQAlOoza46CaI2OlcIYFRLJI22LXXTAgqn:7UL6lmZDIOIYFRLJOnUH
Static task
static1
Malware Config
Targets
-
-
Target
1b0b64002a4a4779d44a281f98d55707c5b8a64a8c8c9defdab48b1b0b1df554
-
Size
4.1MB
-
MD5
a5924c8917b1e75b34a9d38be066e131
-
SHA1
46c62754bb681c311269ccece3ec78e7a299908f
-
SHA256
1b0b64002a4a4779d44a281f98d55707c5b8a64a8c8c9defdab48b1b0b1df554
-
SHA512
125a2994f337ab1a40c4ae75c24f2f6f2a81a94e14d1a2dbda6037f0e7ea0827ba7656648a6f6f5048f3b33abe5464d6fd690955400b8d76aafd91edb8e00bd6
-
SSDEEP
98304:716yO65OGQAlOoza46CaI2OlcIYFRLJI22LXXTAgqn:7UL6lmZDIOIYFRLJOnUH
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-