General
-
Target
d3543541e12cab84bab960e806ebae9b8670749ad07ba8cc675d4696087cb8f0
-
Size
4.1MB
-
Sample
230206-xenpssae91
-
MD5
18fc269bcddafa2e1261797934e05f63
-
SHA1
dd8a39c162086723b0af8fbb4b4ffd001d243392
-
SHA256
d3543541e12cab84bab960e806ebae9b8670749ad07ba8cc675d4696087cb8f0
-
SHA512
9e203357162dff8c88527c1c7a50efe6911c49cbaef56bb2f45345f9ecc669c26bf5819bce7a78e33a4e7db3bdaf64eb8f73c69db1ccbaa3de880fa9b53d3d62
-
SSDEEP
98304:eI0kO+YJm9oqEHC6kB+4iXum2rgLhpxv6ywV/SjT:eLkO+YJTfC6kBR4ufgL9vLwV/SH
Static task
static1
Malware Config
Targets
-
-
Target
d3543541e12cab84bab960e806ebae9b8670749ad07ba8cc675d4696087cb8f0
-
Size
4.1MB
-
MD5
18fc269bcddafa2e1261797934e05f63
-
SHA1
dd8a39c162086723b0af8fbb4b4ffd001d243392
-
SHA256
d3543541e12cab84bab960e806ebae9b8670749ad07ba8cc675d4696087cb8f0
-
SHA512
9e203357162dff8c88527c1c7a50efe6911c49cbaef56bb2f45345f9ecc669c26bf5819bce7a78e33a4e7db3bdaf64eb8f73c69db1ccbaa3de880fa9b53d3d62
-
SSDEEP
98304:eI0kO+YJm9oqEHC6kB+4iXum2rgLhpxv6ywV/SjT:eLkO+YJTfC6kBR4ufgL9vLwV/SH
-
Modifies Windows Firewall
-
Executes dropped EXE
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-