General
-
Target
defe3ce55efec3331afaaa98abe87d6a2aa738ddae5b1f840a92368199276023.exe
-
Size
81KB
-
Sample
241014-rqendatdmk
-
MD5
ac8ba753feb59c96683b599a6b5e4988
-
SHA1
645ebe7d11b42abad125975786c32815e6150e13
-
SHA256
defe3ce55efec3331afaaa98abe87d6a2aa738ddae5b1f840a92368199276023
-
SHA512
21aa3342a55ce8af1b809c560f41ad4e5922f50cf394a74af7a35c93c81b6109d1a00afd6806b240b4e8c8a83a96d8981a04059382295d2a0f1b7b45b7df3909
-
SSDEEP
1536:BoG6KpY6Qi3yj2wyq4HwiMO10HVLCJRpsWr6cdaxPBJYYF7mxDE:7enkyfPAwiMq0RqRfbaxZJYYFD
Malware Config
Targets
-
-
Target
defe3ce55efec3331afaaa98abe87d6a2aa738ddae5b1f840a92368199276023.exe
-
Size
81KB
-
MD5
ac8ba753feb59c96683b599a6b5e4988
-
SHA1
645ebe7d11b42abad125975786c32815e6150e13
-
SHA256
defe3ce55efec3331afaaa98abe87d6a2aa738ddae5b1f840a92368199276023
-
SHA512
21aa3342a55ce8af1b809c560f41ad4e5922f50cf394a74af7a35c93c81b6109d1a00afd6806b240b4e8c8a83a96d8981a04059382295d2a0f1b7b45b7df3909
-
SSDEEP
1536:BoG6KpY6Qi3yj2wyq4HwiMO10HVLCJRpsWr6cdaxPBJYYF7mxDE:7enkyfPAwiMq0RqRfbaxZJYYFD
Score8/10-
Manipulates Digital Signatures
Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
-
Sets service image path in registry
-
Downloads MZ/PE file
-
Drops file in System32 directory
-