General
-
Target
chthonic_2.1.4.0.vir
-
Size
188KB
-
Sample
200719-gmsqjzmeca
-
MD5
42104ac17c4438f016128b643c67e164
-
SHA1
679699cd53fa56cd89d2f98806a42d78efb3748a
-
SHA256
0e3418c1fe660e17a43e8f7568f72d0e21fbed0a52f0e69e4c93b62e3cac3f1a
-
SHA512
70e3d23fe1888e4a438f174c4720eb517cfde01c3b3116f1eb8ebd13e5413cfeca53e0a2da83ce63971620e22a0d986b53b86afa2adbc51598bee832bf13cf33
Score
10/10
Malware Config
Targets
-
-
Target
chthonic_2.1.4.0.vir
-
Size
188KB
-
MD5
42104ac17c4438f016128b643c67e164
-
SHA1
679699cd53fa56cd89d2f98806a42d78efb3748a
-
SHA256
0e3418c1fe660e17a43e8f7568f72d0e21fbed0a52f0e69e4c93b62e3cac3f1a
-
SHA512
70e3d23fe1888e4a438f174c4720eb517cfde01c3b3116f1eb8ebd13e5413cfeca53e0a2da83ce63971620e22a0d986b53b86afa2adbc51598bee832bf13cf33
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
UAC bypass
-
Adds policy Run key to start application
-
Blacklisted process makes network request
-
Disables taskbar notifications via registry modification
-
Checks whether UAC is enabled
-
Suspicious use of SetThreadContext
-