General
-
Target
f9c3fb8c4254097f61059eac3c5bd35a4658fc4ced350d249dcdffa478cb1cb2.exe
-
Size
70KB
-
Sample
240522-xkd3jsch25
-
MD5
7db5185aa216e08c6cf0addd0074756a
-
SHA1
37a52cb309fb2962d13c8d28aeafb49bc4d165b8
-
SHA256
f9c3fb8c4254097f61059eac3c5bd35a4658fc4ced350d249dcdffa478cb1cb2
-
SHA512
d400553a2af9c3f80cc4cfcd5729f7b3b6b3a8366fe1a0cbb7fa4e1da58bf9c67c4688835585ca54a038ac8b0981b0f738dade2c0ce8ca57e90bf383b57ab6b8
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8sl6r:Olg35GTslA5t3/w87r
Malware Config
Targets
-
-
Target
f9c3fb8c4254097f61059eac3c5bd35a4658fc4ced350d249dcdffa478cb1cb2.exe
-
Size
70KB
-
MD5
7db5185aa216e08c6cf0addd0074756a
-
SHA1
37a52cb309fb2962d13c8d28aeafb49bc4d165b8
-
SHA256
f9c3fb8c4254097f61059eac3c5bd35a4658fc4ced350d249dcdffa478cb1cb2
-
SHA512
d400553a2af9c3f80cc4cfcd5729f7b3b6b3a8366fe1a0cbb7fa4e1da58bf9c67c4688835585ca54a038ac8b0981b0f738dade2c0ce8ca57e90bf383b57ab6b8
-
SSDEEP
1536:1teqKDlXvCDB04f5Gn/L8FlADNt3d1Hw8sl6r:Olg35GTslA5t3/w87r
Score10/10-
Windows security bypass
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Modifies WinLogon
-
Drops file in System32 directory
-