General
-
Target
6801b835572c1736b2aeb6e55b7c88c6
-
Size
54KB
-
Sample
240119-s6s2dahaej
-
MD5
6801b835572c1736b2aeb6e55b7c88c6
-
SHA1
9ff46580d7d9258f8c10766c288ad355ea4398bc
-
SHA256
3e24b23721c3655a5148eaf5ff23e398730e9f270307d14d5452f165732a5054
-
SHA512
152b4bcf5b8f4a72a76dbda2c997e38a58827a8edb9e031e750b8d2d2553a600d3b00091cbf37af1b27b3222fa7a68e971b5d6829c06d5167cc95da1aa47d807
-
SSDEEP
1536:6vQqZwQUxtwILj8zMs/jtI7iG43yf6KpVi:6xwhxZLwzM1YyfRVi
Malware Config
Targets
-
-
Target
6801b835572c1736b2aeb6e55b7c88c6
-
Size
54KB
-
MD5
6801b835572c1736b2aeb6e55b7c88c6
-
SHA1
9ff46580d7d9258f8c10766c288ad355ea4398bc
-
SHA256
3e24b23721c3655a5148eaf5ff23e398730e9f270307d14d5452f165732a5054
-
SHA512
152b4bcf5b8f4a72a76dbda2c997e38a58827a8edb9e031e750b8d2d2553a600d3b00091cbf37af1b27b3222fa7a68e971b5d6829c06d5167cc95da1aa47d807
-
SSDEEP
1536:6vQqZwQUxtwILj8zMs/jtI7iG43yf6KpVi:6xwhxZLwzM1YyfRVi
Score10/10-
Modifies WinLogon for persistence
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-