General
-
Target
02c306f9befea627cbcba2f25a47ed856f5c9257e9ccbd9b81d0c27889e1301a
-
Size
1.0MB
-
Sample
210517-rnl7splztj
-
MD5
1499b0d85e9f0a1c9718be7987f520f4
-
SHA1
ae27ade7ba11c73d13e387fb8360c1829d2d88a5
-
SHA256
02c306f9befea627cbcba2f25a47ed856f5c9257e9ccbd9b81d0c27889e1301a
-
SHA512
0f9ef5a03de328c33e0dedbcffa1269145f3ca8493242a45d7bb451d809cea375b247748f923f5bede0eb2da9c40c7740448aeaeb78d18967ba36a29774eb67e
Static task
static1
Behavioral task
behavioral1
Sample
02c306f9befea627cbcba2f25a47ed856f5c9257e9ccbd9b81d0c27889e1301a.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
02c306f9befea627cbcba2f25a47ed856f5c9257e9ccbd9b81d0c27889e1301a.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
02c306f9befea627cbcba2f25a47ed856f5c9257e9ccbd9b81d0c27889e1301a
-
Size
1.0MB
-
MD5
1499b0d85e9f0a1c9718be7987f520f4
-
SHA1
ae27ade7ba11c73d13e387fb8360c1829d2d88a5
-
SHA256
02c306f9befea627cbcba2f25a47ed856f5c9257e9ccbd9b81d0c27889e1301a
-
SHA512
0f9ef5a03de328c33e0dedbcffa1269145f3ca8493242a45d7bb451d809cea375b247748f923f5bede0eb2da9c40c7740448aeaeb78d18967ba36a29774eb67e
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-