General
-
Target
7b624dce3063067f575f124bfd4a4dcbbac20094b19c52d62e8a5ed2702163c1
-
Size
1.0MB
-
Sample
210518-1vh81ppt4s
-
MD5
51db7a3a3551bc1f4e6acdfd49c57c49
-
SHA1
3416072fdb6940ea50e2ba301a5b77f178b2af47
-
SHA256
7b624dce3063067f575f124bfd4a4dcbbac20094b19c52d62e8a5ed2702163c1
-
SHA512
b86643042d49abdd9bcaa0947abbe45e6de037118723a5205f3f188d5af160906588cbce23f52ea18d3b66925cd3ee505367a6b80d57fb64fe30282ede5e8808
Static task
static1
Behavioral task
behavioral1
Sample
7b624dce3063067f575f124bfd4a4dcbbac20094b19c52d62e8a5ed2702163c1.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
7b624dce3063067f575f124bfd4a4dcbbac20094b19c52d62e8a5ed2702163c1.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
7b624dce3063067f575f124bfd4a4dcbbac20094b19c52d62e8a5ed2702163c1
-
Size
1.0MB
-
MD5
51db7a3a3551bc1f4e6acdfd49c57c49
-
SHA1
3416072fdb6940ea50e2ba301a5b77f178b2af47
-
SHA256
7b624dce3063067f575f124bfd4a4dcbbac20094b19c52d62e8a5ed2702163c1
-
SHA512
b86643042d49abdd9bcaa0947abbe45e6de037118723a5205f3f188d5af160906588cbce23f52ea18d3b66925cd3ee505367a6b80d57fb64fe30282ede5e8808
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-