General
-
Target
0ed4bb4fd32390b13470b089c794691bdb4542c4998536ef8d02c40711fcf112
-
Size
291KB
-
Sample
240416-xqxrvaaa46
-
MD5
fd1bb57f91b702d908ed73850eacfe3d
-
SHA1
9dc3b7a6f596e20ae1e748bf93db2fc81ddfc3ac
-
SHA256
0ed4bb4fd32390b13470b089c794691bdb4542c4998536ef8d02c40711fcf112
-
SHA512
58a3d88fed46be212e523adab9fc6d2e0bd74ab9d22bb557432b65880d30cbe559f48be90484cb2896d860561be3489d17d518e0e96d75464f6622414931b012
-
SSDEEP
6144:XBEwWyHSOIxmoxEg2JnlbeCubLlzeBJPTnWSDHg0G6V33+gH:XBE1r3xEg2Jnd6zuJPTnWSDHRRH+S
Malware Config
Targets
-
-
Target
0ed4bb4fd32390b13470b089c794691bdb4542c4998536ef8d02c40711fcf112
-
Size
291KB
-
MD5
fd1bb57f91b702d908ed73850eacfe3d
-
SHA1
9dc3b7a6f596e20ae1e748bf93db2fc81ddfc3ac
-
SHA256
0ed4bb4fd32390b13470b089c794691bdb4542c4998536ef8d02c40711fcf112
-
SHA512
58a3d88fed46be212e523adab9fc6d2e0bd74ab9d22bb557432b65880d30cbe559f48be90484cb2896d860561be3489d17d518e0e96d75464f6622414931b012
-
SSDEEP
6144:XBEwWyHSOIxmoxEg2JnlbeCubLlzeBJPTnWSDHg0G6V33+gH:XBE1r3xEg2Jnd6zuJPTnWSDHRRH+S
Score10/10-
Modifies firewall policy service
-
Detects Windows executables referencing non-Windows User-Agents
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Drops file in System32 directory
-