General
-
Target
4d36e957019e82c798575b88fac5fd38
-
Size
4.9MB
-
Sample
240109-dy8drsdghn
-
MD5
4d36e957019e82c798575b88fac5fd38
-
SHA1
f274f379d28c2c10346a2b134216e2e8be59d1b5
-
SHA256
c4be2b0e243b6a055875949f15cb7f54331c85ce484d5f4369b88f44ca6a9de4
-
SHA512
789c40ea1b7841f696694bdd4aff411102e12ee136ed027a6b515cc30d1e65302602ca385f408bfae14873b4c6b7e38b875922030f441cdd07a52518462bfccd
-
SSDEEP
49152:67N1ahCR0V7N1ahCh0V7N1ahCB0V7N1ahCP0V7N1ahCJ0V7N1ahCX0V7N1ahC/0:67E7U707S787a7
Malware Config
Targets
-
-
Target
4d36e957019e82c798575b88fac5fd38
-
Size
4.9MB
-
MD5
4d36e957019e82c798575b88fac5fd38
-
SHA1
f274f379d28c2c10346a2b134216e2e8be59d1b5
-
SHA256
c4be2b0e243b6a055875949f15cb7f54331c85ce484d5f4369b88f44ca6a9de4
-
SHA512
789c40ea1b7841f696694bdd4aff411102e12ee136ed027a6b515cc30d1e65302602ca385f408bfae14873b4c6b7e38b875922030f441cdd07a52518462bfccd
-
SSDEEP
49152:67N1ahCR0V7N1ahCh0V7N1ahCB0V7N1ahCP0V7N1ahCJ0V7N1ahCX0V7N1ahC/0:67E7U707S787a7
Score10/10-
FakeAV, RogueAntivirus
FakeAV or Rogue AntiVirus is a class of malware that displays false alert messages.
-
FakeAV payload
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-