General
-
Target
krampus.zip
-
Size
6.7MB
-
Sample
240511-jxeyqafd9v
-
MD5
f3a0e48ad8641883f68cedf5f99aa6f9
-
SHA1
8b82bdd59ed671db5bccac3896d3bd85a6f96adf
-
SHA256
7216809508038bb48101492a4e93434173b059afb68200ef919557286032cee9
-
SHA512
a85e173d5a793ceb78a189ea04aa12a25633a0e82ce48152c2efaddf721fd9f3b0c34e2afa6665c32c20abc6489a4896697192059ee45ea447e1bf0ddfd7838d
-
SSDEEP
196608:buuP/flRYo4qb3xZ4YrT7zqylzEXryOyqI2bd0:bhnle8FHmgE73FIam
Static task
static1
Behavioral task
behavioral1
Sample
krampus.zip
Resource
win11-20240426-en
Malware Config
Targets
-
-
Target
krampus.zip
-
Size
6.7MB
-
MD5
f3a0e48ad8641883f68cedf5f99aa6f9
-
SHA1
8b82bdd59ed671db5bccac3896d3bd85a6f96adf
-
SHA256
7216809508038bb48101492a4e93434173b059afb68200ef919557286032cee9
-
SHA512
a85e173d5a793ceb78a189ea04aa12a25633a0e82ce48152c2efaddf721fd9f3b0c34e2afa6665c32c20abc6489a4896697192059ee45ea447e1bf0ddfd7838d
-
SSDEEP
196608:buuP/flRYo4qb3xZ4YrT7zqylzEXryOyqI2bd0:bhnle8FHmgE73FIam
Score8/10-
Command and Scripting Interpreter: PowerShell
Run Powershell to modify Windows Defender settings to add exclusions for file extensions, paths, and processes.
-
Executes dropped EXE
-