General
-
Target
2024-04-28_d75b7212f0bb3b7380778484e4ffda3c_avoslocker
-
Size
1.3MB
-
Sample
240428-mg7kksdh7y
-
MD5
d75b7212f0bb3b7380778484e4ffda3c
-
SHA1
480485791691161650502445a1d846f24c4e7914
-
SHA256
818c2683a7d2367289fb181e8ee92be1cb472e84d5ad8384de4a419f5d0807a4
-
SHA512
3ee6337e29752017b7f877d648c4fe0e1fe6661a5d406b07c2fac5fd01d9b6b284045d36791d9578a153a69aa631e67d4b0c8bc0566868f0aae353b66836c52d
-
SSDEEP
24576:n2zEYytjjqNSlhvpfQiIhKPtehfQ7r9qySkbgedP1N3RUDHNmdPCAaq8Nozgi/re:nPtjtQiIhUyQd1SkFdb8HNUPCAaq8Wdd
Static task
static1
Behavioral task
behavioral1
Sample
2024-04-28_d75b7212f0bb3b7380778484e4ffda3c_avoslocker.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
2024-04-28_d75b7212f0bb3b7380778484e4ffda3c_avoslocker.exe
Resource
win10-20240404-en
Behavioral task
behavioral3
Sample
2024-04-28_d75b7212f0bb3b7380778484e4ffda3c_avoslocker.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2024-04-28_d75b7212f0bb3b7380778484e4ffda3c_avoslocker
-
Size
1.3MB
-
MD5
d75b7212f0bb3b7380778484e4ffda3c
-
SHA1
480485791691161650502445a1d846f24c4e7914
-
SHA256
818c2683a7d2367289fb181e8ee92be1cb472e84d5ad8384de4a419f5d0807a4
-
SHA512
3ee6337e29752017b7f877d648c4fe0e1fe6661a5d406b07c2fac5fd01d9b6b284045d36791d9578a153a69aa631e67d4b0c8bc0566868f0aae353b66836c52d
-
SSDEEP
24576:n2zEYytjjqNSlhvpfQiIhKPtehfQ7r9qySkbgedP1N3RUDHNmdPCAaq8Nozgi/re:nPtjtQiIhUyQd1SkFdb8HNUPCAaq8Wdd
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-