Overview

overview

3

Static

static

1

Filter Agent.zip

windows11-21h2-x64

1

Filter Age...ht.txt

windows11-21h2-x64

3

Filter Age...rv.cat

windows11-21h2-x64

1

Filter Age...rv.inf

windows11-21h2-x64

3

Filter Age...rv.sys

windows11-21h2-x64

1

Filter Age...e.json

windows11-21h2-x64

3

Filter Age...e.json

windows11-21h2-x64

3

Filter Age...x.json

windows11-21h2-x64

3

Filter Age...vc.exe

windows11-21h2-x64

1

Filter Age...vc.log

windows11-21h2-x64

3

Filter Age.../block

windows11-21h2-x64

1

Filter Age.../cache

windows11-21h2-x64

1

Filter Age...usions

windows11-21h2-x64

1

Filter Age...elpers

windows11-21h2-x64

1

Filter Age...icense

windows11-21h2-x64

1

Filter Age...ta/pac

windows11-21h2-x64

1

Filter Age...policy

windows11-21h2-x64

1

Filter Age...97.log

windows11-21h2-x64

3

Filter Age...68.log

windows11-21h2-x64

3

Filter Age...20.log

windows11-21h2-x64

3

Filter Age...89.log

windows11-21h2-x64

3

Filter Age...67.log

windows11-21h2-x64

3

Filter Age...er.log

windows11-21h2-x64

3

Filter Age...te.exe

windows11-21h2-x64

1

Filter Agent/ca.pem

windows11-21h2-x64

3

Filter Age...ey.pem

windows11-21h2-x64

3

Filter Age...st.pem

windows11-21h2-x64

3

Filter Age...ey.pem

windows11-21h2-x64

3

Filter Age...g.json

windows11-21h2-x64

3

Filter Age...er.exe

windows11-21h2-x64

1

Filter Age...xy.exe

windows11-21h2-x64

1

Filter Age...ca.exe

windows11-21h2-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    Filter Agent.zip

  • Size

    19.4MB

  • MD5

    8a4db45f61bed53d731127acfc1e001a

  • SHA1

    9b7b5631016f23ea2f7b826b0fe7097ce44a8e15

  • SHA256

    6e70787ee5c3ac271bd9c2b5c65ef2a7d490a03649b15136dea0bb01ad6406a8

  • SHA512

    5d19ada8cd2dfe276ed9e6472dc2e358d0f02f36956943f6e84de868a225b5f608a6932e580f4a49e8a291389bf250d667bf55014bb54e6369a140f05a49b73b

  • SSDEEP

    393216:N2c5+IZvMWRnH3PHbNftTDgeNLSXbINfHfHD+a5pFJagoktpUGo9MBaJcmXs6+a:353RRHfHBVTDhtQbsfHvD+aJJoi9o9fL

Score
1/10

Malware Config

Signatures

Files

  • Filter Agent.zip
    .zip
  • Filter Agent/Copyright.txt
  • Filter Agent/Driver/LSSADrv.Cat
  • Filter Agent/Driver/LSSADrv.Inf
  • Filter Agent/Driver/LSSADrv.sys
    .sys windows:10 windows x64 arch:x64

    d86d857648966a6225267399456769da


    Code Sign

    Headers

    Imports

    Sections

  • Filter Agent/ExtensionManifest_Chrome.json
  • Filter Agent/ExtensionManifest_Edge.json
  • Filter Agent/ExtensionManifest_Firefox.json
  • Filter Agent/LSSASvc.exe
    .exe windows:6 windows x64 arch:x64

    f40eea52df87d6750cf2854bc45ba996


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • Filter Agent/LSSASvc.log
  • Filter Agent/PolicyData/block
  • Filter Agent/PolicyData/cache
  • Filter Agent/PolicyData/exclusions
  • Filter Agent/PolicyData/helpers
  • Filter Agent/PolicyData/license
  • Filter Agent/PolicyData/pac
  • Filter Agent/PolicyData/policy
  • Filter Agent/PolicyLogs/lsfilter-panic-1707166149697.log
  • Filter Agent/PolicyLogs/lsfilter-panic-1707488867668.log
  • Filter Agent/PolicyLogs/lsfilter-panic-1709051690520.log
  • Filter Agent/PolicyLogs/lsfilter-panic-1709242744489.log
  • Filter Agent/PolicyLogs/lsfilter-panic-1709738612767.log
  • Filter Agent/PolicyLogs/lsfilter.log
  • Filter Agent/Update.exe
    .exe windows:6 windows x64 arch:x64

    f03fca0baa2ef99147e2ce39e99712da


    Code Sign

    Headers

    Imports

    Sections

  • Filter Agent/ca.pem
  • Filter Agent/ca_key.pem
  • Filter Agent/localhost.pem
  • Filter Agent/localhost_key.pem
  • Filter Agent/lsconfig.json
  • Filter Agent/lsfilter.exe
    .exe windows:6 windows x64 arch:x64

    65892a964106b5e0c6c363fdf21975eb


    Code Sign

    Headers

    Imports

    Sections

  • Filter Agent/lsproxy.exe
    .exe windows:6 windows x64 arch:x64

    ff9f3a86709796c17211f9df12aae74d


    Code Sign

    Headers

    Imports

    Sections

  • Filter Agent/makeca.exe
    .exe windows:6 windows x64 arch:x64

    c7269d59926fa4252270f407e4dab043


    Code Sign

    Headers

    Imports

    Sections

  • Filter Agent/manifest.json