General
-
Target
22304d15db4cb825eaf2a81e1c1e43e8
-
Size
1.6MB
-
Sample
231231-a5a53ahfbp
-
MD5
22304d15db4cb825eaf2a81e1c1e43e8
-
SHA1
de02bc12c863cba561a61be4ea362ae180578d31
-
SHA256
45bf8faab0b74290ed54f4961cd43b7272898ed979f3bcc4dfcf75eff5039031
-
SHA512
06293626950924dfecb06a57478509a539344be08d6eee37c6f0c616a09e5d28d77ed88d94123d60b9786b5a9d9df4265bec30954533c4c3a3dc6e64195f1350
-
SSDEEP
49152:knl4PCjMMPnIxFQEdXNGL1d6raKbnbyX:24UMMAxFQIdGLIaeb
Malware Config
Targets
-
-
Target
22304d15db4cb825eaf2a81e1c1e43e8
-
Size
1.6MB
-
MD5
22304d15db4cb825eaf2a81e1c1e43e8
-
SHA1
de02bc12c863cba561a61be4ea362ae180578d31
-
SHA256
45bf8faab0b74290ed54f4961cd43b7272898ed979f3bcc4dfcf75eff5039031
-
SHA512
06293626950924dfecb06a57478509a539344be08d6eee37c6f0c616a09e5d28d77ed88d94123d60b9786b5a9d9df4265bec30954533c4c3a3dc6e64195f1350
-
SSDEEP
49152:knl4PCjMMPnIxFQEdXNGL1d6raKbnbyX:24UMMAxFQIdGLIaeb
Score8/10-
Drops file in Drivers directory
-
Manipulates Digital Signatures
Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
-
Adds Run key to start application
-