General
-
Target
37fc7d6919b0996308cc463142b2cc18fe981700df56881d6dcaee9578f94d3d
-
Size
920KB
-
Sample
210517-725jvln1q6
-
MD5
e804137d656f1a51cccb970273d85bee
-
SHA1
1fb1510d70307748cb100f547b2e6ba64f4697fd
-
SHA256
37fc7d6919b0996308cc463142b2cc18fe981700df56881d6dcaee9578f94d3d
-
SHA512
1d6d5105f2ffb3ac6f0adbdda4bdc7807ca52a3cbf39a57f358f8735932904f2dcc69dcbce517ac91657321449431d9d6326c65219ee52fd591130795d9e145b
Static task
static1
Behavioral task
behavioral1
Sample
37fc7d6919b0996308cc463142b2cc18fe981700df56881d6dcaee9578f94d3d.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
37fc7d6919b0996308cc463142b2cc18fe981700df56881d6dcaee9578f94d3d.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
37fc7d6919b0996308cc463142b2cc18fe981700df56881d6dcaee9578f94d3d
-
Size
920KB
-
MD5
e804137d656f1a51cccb970273d85bee
-
SHA1
1fb1510d70307748cb100f547b2e6ba64f4697fd
-
SHA256
37fc7d6919b0996308cc463142b2cc18fe981700df56881d6dcaee9578f94d3d
-
SHA512
1d6d5105f2ffb3ac6f0adbdda4bdc7807ca52a3cbf39a57f358f8735932904f2dcc69dcbce517ac91657321449431d9d6326c65219ee52fd591130795d9e145b
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-