General
-
Target
c9a9ed260024bc8fafa06f3346c57d4eb315f009674bc8cf703e033b86ce27d5
-
Size
1.0MB
-
Sample
210518-3aasvp5786
-
MD5
d623fd90e78678d98726085df4c9e545
-
SHA1
de2a16409e2eebef7f96a00b4cd202669a385920
-
SHA256
c9a9ed260024bc8fafa06f3346c57d4eb315f009674bc8cf703e033b86ce27d5
-
SHA512
a001182a61e20bf2adb859e9da6b195d55c40501669070897edbeb43e0cb3fd151dfa32ad61ac766f74e2f91b2f79fa0a7ffe3c3d15fc646e2e1388d4b979bef
Static task
static1
Behavioral task
behavioral1
Sample
c9a9ed260024bc8fafa06f3346c57d4eb315f009674bc8cf703e033b86ce27d5.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
c9a9ed260024bc8fafa06f3346c57d4eb315f009674bc8cf703e033b86ce27d5.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
c9a9ed260024bc8fafa06f3346c57d4eb315f009674bc8cf703e033b86ce27d5
-
Size
1.0MB
-
MD5
d623fd90e78678d98726085df4c9e545
-
SHA1
de2a16409e2eebef7f96a00b4cd202669a385920
-
SHA256
c9a9ed260024bc8fafa06f3346c57d4eb315f009674bc8cf703e033b86ce27d5
-
SHA512
a001182a61e20bf2adb859e9da6b195d55c40501669070897edbeb43e0cb3fd151dfa32ad61ac766f74e2f91b2f79fa0a7ffe3c3d15fc646e2e1388d4b979bef
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-