General
-
Target
514fa6c138b14b1eb601fff167b9b8c0.exe
-
Size
352KB
-
Sample
240110-x6vmesegdj
-
MD5
514fa6c138b14b1eb601fff167b9b8c0
-
SHA1
f7227c8bf6237f8d3e7cd785e453b47cc3c18d74
-
SHA256
bdb2b87952def04f480267f350e23f2adb86d0b939c83ebf5fd94b48f47a2d45
-
SHA512
16e63ccc6c3b6e75ed4f4adbe500b2b78cd81f6a6c75260d839f0c389be9be08ecea3403269f4bdc0ce10acdced93db7c82ad523c64a0160b8a88f742dece0bc
-
SSDEEP
6144:TbcNnubqTCZRvMnWxL964JGv2aFx4UCCh4Y8T2I6TEKAMwmNccFxroD:PcNuC+h/xAy6tCCOY8T7KRwmSD
Static task
static1
Behavioral task
behavioral1
Sample
514fa6c138b14b1eb601fff167b9b8c0.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
514fa6c138b14b1eb601fff167b9b8c0.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
514fa6c138b14b1eb601fff167b9b8c0.exe
-
Size
352KB
-
MD5
514fa6c138b14b1eb601fff167b9b8c0
-
SHA1
f7227c8bf6237f8d3e7cd785e453b47cc3c18d74
-
SHA256
bdb2b87952def04f480267f350e23f2adb86d0b939c83ebf5fd94b48f47a2d45
-
SHA512
16e63ccc6c3b6e75ed4f4adbe500b2b78cd81f6a6c75260d839f0c389be9be08ecea3403269f4bdc0ce10acdced93db7c82ad523c64a0160b8a88f742dece0bc
-
SSDEEP
6144:TbcNnubqTCZRvMnWxL964JGv2aFx4UCCh4Y8T2I6TEKAMwmNccFxroD:PcNuC+h/xAy6tCCOY8T7KRwmSD
Score10/10-
Modifies WinLogon for persistence
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-