General
-
Target
avast_free_antivirus_setup_online.exe
-
Size
257KB
-
Sample
240410-nxjdcsee39
-
MD5
7fc125397d6577894abea6deb31ac973
-
SHA1
7b95ea6b6a02ac0d156af2572361c63cc3188f66
-
SHA256
06849d177f62dc14710365aeb863192e03bd2bac25fa4db2ac292e6f9fbbbc68
-
SHA512
5376e8680000e1295988bafd9b25d8d1bf9abedaaeca1be86a33f39e36942095e5337a44e974be4e25c0d1e805436a462663971a3fbe1cd9b05714a9172b287c
-
SSDEEP
3072:a2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+T8:a0KgGwHqwOOELha+sm2D2+UhnguyU
Malware Config
Targets
-
-
Target
avast_free_antivirus_setup_online.exe
-
Size
257KB
-
MD5
7fc125397d6577894abea6deb31ac973
-
SHA1
7b95ea6b6a02ac0d156af2572361c63cc3188f66
-
SHA256
06849d177f62dc14710365aeb863192e03bd2bac25fa4db2ac292e6f9fbbbc68
-
SHA512
5376e8680000e1295988bafd9b25d8d1bf9abedaaeca1be86a33f39e36942095e5337a44e974be4e25c0d1e805436a462663971a3fbe1cd9b05714a9172b287c
-
SSDEEP
3072:a2RaiKg4xmUh1WXHqw/l+qmOELhakVsm3mxB32tLEv8zfdn5f2dZLCozOhhBn+T8:a0KgGwHqwOOELha+sm2D2+UhnguyU
Score6/10-
Checks for any installed AV software in registry
-
Downloads MZ/PE file
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-