General
-
Target
c237796e1826ec66c6fe5154a67e490bcd40a2d4140ec3503efa4730f0335b98
-
Size
1006KB
-
Sample
210517-pt96z2jwpj
-
MD5
e7bc270625ea4110964e802420591875
-
SHA1
16c4c970cc46969e4b278d63ed55c43f63b80f03
-
SHA256
c237796e1826ec66c6fe5154a67e490bcd40a2d4140ec3503efa4730f0335b98
-
SHA512
586b8d94bc89e22bc25a3f38f5c31e3584a4a0245d69f7e382b9c7b1f60dbefe3e483d209fc420170f0a54874e7c5b8dab473465d0df91428541a61129a714da
Static task
static1
Behavioral task
behavioral1
Sample
c237796e1826ec66c6fe5154a67e490bcd40a2d4140ec3503efa4730f0335b98.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
c237796e1826ec66c6fe5154a67e490bcd40a2d4140ec3503efa4730f0335b98.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
c237796e1826ec66c6fe5154a67e490bcd40a2d4140ec3503efa4730f0335b98
-
Size
1006KB
-
MD5
e7bc270625ea4110964e802420591875
-
SHA1
16c4c970cc46969e4b278d63ed55c43f63b80f03
-
SHA256
c237796e1826ec66c6fe5154a67e490bcd40a2d4140ec3503efa4730f0335b98
-
SHA512
586b8d94bc89e22bc25a3f38f5c31e3584a4a0245d69f7e382b9c7b1f60dbefe3e483d209fc420170f0a54874e7c5b8dab473465d0df91428541a61129a714da
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-