General
-
Target
8faadf45c0d91908ef309b0ce5c4b51510f3b41486e398c1dbc712968ed1604c.exe
-
Size
1.6MB
-
Sample
241225-tz5bhaykdw
-
MD5
8873c0c3bd8b7efd43e2c561055f17f1
-
SHA1
ca9edc9063eac3fd7f0adaeb1fa9051002736ed1
-
SHA256
8faadf45c0d91908ef309b0ce5c4b51510f3b41486e398c1dbc712968ed1604c
-
SHA512
e37c87d8ecfe49451920000900241ae3494b72268cf7dc55ce33465e21e93cd3130d958326d4cf6a6f0aa088900543af37260c6ad01c0a00adcb7f49290963a2
-
SSDEEP
24576:hxY3NtGUmJr+4Obxd+tPZSZViE6EhE9xY3NtGUmJr+4Obxd+tPZSZUiE6EhET:LY3buzMi0IY3buzM70i
Malware Config
Targets
-
-
Target
8faadf45c0d91908ef309b0ce5c4b51510f3b41486e398c1dbc712968ed1604c.exe
-
Size
1.6MB
-
MD5
8873c0c3bd8b7efd43e2c561055f17f1
-
SHA1
ca9edc9063eac3fd7f0adaeb1fa9051002736ed1
-
SHA256
8faadf45c0d91908ef309b0ce5c4b51510f3b41486e398c1dbc712968ed1604c
-
SHA512
e37c87d8ecfe49451920000900241ae3494b72268cf7dc55ce33465e21e93cd3130d958326d4cf6a6f0aa088900543af37260c6ad01c0a00adcb7f49290963a2
-
SSDEEP
24576:hxY3NtGUmJr+4Obxd+tPZSZViE6EhE9xY3NtGUmJr+4Obxd+tPZSZUiE6EhET:LY3buzMi0IY3buzM70i
Score10/10-
FakeAV, RogueAntivirus
FakeAV or Rogue AntiVirus is a class of malware that displays false alert messages.
-
Fakeav family
-
FakeAV payload
-
Adds Run key to start application
-
Drops file in System32 directory
-