General
-
Target
.
-
Size
147KB
-
Sample
240420-xcyf8afe5v
-
MD5
58ad053e7ef750e9972ca2eb69da9b03
-
SHA1
05fd28c756ae5db842e87b2d99db826974fdcbad
-
SHA256
fa7643a630d4147161d19fd5322c9298a26c2df76d355f7e2536cded87162855
-
SHA512
14a092d0f84349d31a5407ac1f20930dfdb29193d47a83170336888fbdc83ec1a060285683d8f190a6fee987685c79b9c18321a51ddcda4437a2c752ba6b9bee
-
SSDEEP
1536:ogkud8LonVJoqYarK4DsYNgRyypRMPuNPV5nPztP4FPfaParP8R4DJ2PWTllU0r4:HkPL6WVMllhAYnHhqiS
Static task
static1
Malware Config
Targets
-
-
Target
.
-
Size
147KB
-
MD5
58ad053e7ef750e9972ca2eb69da9b03
-
SHA1
05fd28c756ae5db842e87b2d99db826974fdcbad
-
SHA256
fa7643a630d4147161d19fd5322c9298a26c2df76d355f7e2536cded87162855
-
SHA512
14a092d0f84349d31a5407ac1f20930dfdb29193d47a83170336888fbdc83ec1a060285683d8f190a6fee987685c79b9c18321a51ddcda4437a2c752ba6b9bee
-
SSDEEP
1536:ogkud8LonVJoqYarK4DsYNgRyypRMPuNPV5nPztP4FPfaParP8R4DJ2PWTllU0r4:HkPL6WVMllhAYnHhqiS
-
Disables Task Manager via registry modification
-
Executes dropped EXE
-
Legitimate hosting services abused for malware hosting/C2
-