General
-
Target
WinRAR.lnk
-
Size
997B
-
Sample
240420-jc7g8scc71
-
MD5
c844043c01d13a9130acf70fa6e21d9a
-
SHA1
e93b3a6079c2801fcbacdc8d2f350c9b65b6d385
-
SHA256
cc71fa084ffab78c7bfb9a86f0099fa2e91ec4268ba7b4865b7894b140b347bd
-
SHA512
344d6dc7110cfc9c5c5e82388a09667240968e9c971c85e28090930ec3721724bc12d17413f5b0f17a331524399e36774e09025f7bcf16517ae50b0c1f1b89f2
Static task
static1
Behavioral task
behavioral1
Sample
WinRAR.lnk
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
WinRAR.lnk
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
WinRAR.lnk
-
Size
997B
-
MD5
c844043c01d13a9130acf70fa6e21d9a
-
SHA1
e93b3a6079c2801fcbacdc8d2f350c9b65b6d385
-
SHA256
cc71fa084ffab78c7bfb9a86f0099fa2e91ec4268ba7b4865b7894b140b347bd
-
SHA512
344d6dc7110cfc9c5c5e82388a09667240968e9c971c85e28090930ec3721724bc12d17413f5b0f17a331524399e36774e09025f7bcf16517ae50b0c1f1b89f2
Score8/10-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-