General
-
Target
5f3ac954dc666d93c921f2ef4d10b933
-
Size
49KB
-
Sample
231226-j7q4qshgb4
-
MD5
5f3ac954dc666d93c921f2ef4d10b933
-
SHA1
a1d989783526a7e51d7ff94ae5bcfe3e2335a74f
-
SHA256
6b8103d51081177032e7624aeb46d3e7b751ddb83e1307d3bf713eeb61adb48c
-
SHA512
80cab122adc72d6a5a34a68ddfdf04ca39a2f907f8a7698b1d05d62d37c94e6b7df69c9237161d7607e00364c1a07da5d7ffb02ddceff7ad4b03bc7df021495b
-
SSDEEP
768:E+agqQD4PTyRPpWBtCbwSAEW/23S5AyGJrkKuAHrURMtXXCGsPgF1DpmQ:E+agGbyRhWzNuAKBHftHCGs4bpT
Malware Config
Targets
-
-
Target
5f3ac954dc666d93c921f2ef4d10b933
-
Size
49KB
-
MD5
5f3ac954dc666d93c921f2ef4d10b933
-
SHA1
a1d989783526a7e51d7ff94ae5bcfe3e2335a74f
-
SHA256
6b8103d51081177032e7624aeb46d3e7b751ddb83e1307d3bf713eeb61adb48c
-
SHA512
80cab122adc72d6a5a34a68ddfdf04ca39a2f907f8a7698b1d05d62d37c94e6b7df69c9237161d7607e00364c1a07da5d7ffb02ddceff7ad4b03bc7df021495b
-
SSDEEP
768:E+agqQD4PTyRPpWBtCbwSAEW/23S5AyGJrkKuAHrURMtXXCGsPgF1DpmQ:E+agGbyRhWzNuAKBHftHCGs4bpT
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-