General
-
Target
http://malwat.ch
-
Sample
230331-xh15asce93
Score
10/10
Static task
static1
URLScan task
urlscan1
Behavioral task
behavioral1
Sample
http://malwat.ch
Resource
win10-20230220-en
windows10-1703-x64
19 signatures
1800 seconds
Behavioral task
behavioral2
Sample
http://malwat.ch
Resource
win7-20230220-en
windows7-x64
6 signatures
1800 seconds
Behavioral task
behavioral3
Sample
http://malwat.ch
Resource
win10v2004-20230220-en
windows10-2004-x64
8 signatures
1800 seconds
Malware Config
Targets
-
-
Target
http://malwat.ch
Score10/10-
Modifies WinLogon for persistence
-
Disables RegEdit via registry modification
-
Drops desktop.ini file(s)
-
Legitimate hosting services abused for malware hosting/C2
-
Sets desktop wallpaper using registry
-