General
-
Target
bd6d9b483efdf5ce0f161a8498849905c019b2deded84b869e0147bc28a89151
-
Size
4.0MB
-
Sample
230204-kang1sch57
-
MD5
3126f459ec0fcaab2961d1fc7cbb5964
-
SHA1
0c3b0af633e4c3bf4546b0cec766ebc8312e7b88
-
SHA256
bd6d9b483efdf5ce0f161a8498849905c019b2deded84b869e0147bc28a89151
-
SHA512
0d22d0d53d6963b48b771ff35d2f446540556f2f8189ede9fefa1d759d9c0f3a1ae0bc783b7eb32ce1b87f45708937f9235eb446e4bf83261b105886ff75fb1b
-
SSDEEP
98304:rdREkzcI1qdyckvktiqiexmGldkJXl5ZlJ9xZILtcwBbnN:rkkwz3kv5qopJ9xmHBR
Static task
static1
Malware Config
Targets
-
-
Target
bd6d9b483efdf5ce0f161a8498849905c019b2deded84b869e0147bc28a89151
-
Size
4.0MB
-
MD5
3126f459ec0fcaab2961d1fc7cbb5964
-
SHA1
0c3b0af633e4c3bf4546b0cec766ebc8312e7b88
-
SHA256
bd6d9b483efdf5ce0f161a8498849905c019b2deded84b869e0147bc28a89151
-
SHA512
0d22d0d53d6963b48b771ff35d2f446540556f2f8189ede9fefa1d759d9c0f3a1ae0bc783b7eb32ce1b87f45708937f9235eb446e4bf83261b105886ff75fb1b
-
SSDEEP
98304:rdREkzcI1qdyckvktiqiexmGldkJXl5ZlJ9xZILtcwBbnN:rkkwz3kv5qopJ9xmHBR
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-