General
-
Target
89c896da28c862c380f52fa771f727bdd67ad5c6a5b3afefeb12112619c981f5
-
Size
1.6MB
-
Sample
240407-23tceahc3y
-
MD5
806f6ce34ac929a5d019e805cae99072
-
SHA1
ec3d28a0bb6a50e47fee50053d7f8e07a3353f7b
-
SHA256
89c896da28c862c380f52fa771f727bdd67ad5c6a5b3afefeb12112619c981f5
-
SHA512
eeab25d3f10f929295d30b8020ee53e08ea0aea4fbf2dad4d289b4767fc2558841c37600850a99e66c6e98bdd514b61637b948da46e6f0913378866eae9f9e3b
-
SSDEEP
24576:hxY3NtGUmJr+4Obxd+tPZSZMiE6EhE9xY3NtGUmJr+4Obxd+tPZSZyiE6EhE7:LY3buzMb0IY3buzMp0E
Malware Config
Targets
-
-
Target
89c896da28c862c380f52fa771f727bdd67ad5c6a5b3afefeb12112619c981f5
-
Size
1.6MB
-
MD5
806f6ce34ac929a5d019e805cae99072
-
SHA1
ec3d28a0bb6a50e47fee50053d7f8e07a3353f7b
-
SHA256
89c896da28c862c380f52fa771f727bdd67ad5c6a5b3afefeb12112619c981f5
-
SHA512
eeab25d3f10f929295d30b8020ee53e08ea0aea4fbf2dad4d289b4767fc2558841c37600850a99e66c6e98bdd514b61637b948da46e6f0913378866eae9f9e3b
-
SSDEEP
24576:hxY3NtGUmJr+4Obxd+tPZSZMiE6EhE9xY3NtGUmJr+4Obxd+tPZSZyiE6EhE7:LY3buzMb0IY3buzMp0E
Score10/10-
FakeAV, RogueAntivirus
FakeAV or Rogue AntiVirus is a class of malware that displays false alert messages.
-
FakeAV payload
-
Adds Run key to start application
-
Drops file in System32 directory
-