General
-
Target
b638d6c14bf5e7e7141c74ffe40f3b74cd3c8c12f6ff449064f6027c54f47017
-
Size
1.0MB
-
Sample
210518-4pz44vfttx
-
MD5
4157236ae2938258608922cc3c0f4345
-
SHA1
716f85e32b5f3689643901bb19db5b2c47ff4e4e
-
SHA256
b638d6c14bf5e7e7141c74ffe40f3b74cd3c8c12f6ff449064f6027c54f47017
-
SHA512
1eac3f5a613e841d4eec56718e957543d39865f2db1f2de330c741f32b3d2d9de6ab15111280b5aa16fcbd9480b152743625a087f1c1deabe0df8fd4bba63c2a
Static task
static1
Behavioral task
behavioral1
Sample
b638d6c14bf5e7e7141c74ffe40f3b74cd3c8c12f6ff449064f6027c54f47017.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
b638d6c14bf5e7e7141c74ffe40f3b74cd3c8c12f6ff449064f6027c54f47017.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
b638d6c14bf5e7e7141c74ffe40f3b74cd3c8c12f6ff449064f6027c54f47017
-
Size
1.0MB
-
MD5
4157236ae2938258608922cc3c0f4345
-
SHA1
716f85e32b5f3689643901bb19db5b2c47ff4e4e
-
SHA256
b638d6c14bf5e7e7141c74ffe40f3b74cd3c8c12f6ff449064f6027c54f47017
-
SHA512
1eac3f5a613e841d4eec56718e957543d39865f2db1f2de330c741f32b3d2d9de6ab15111280b5aa16fcbd9480b152743625a087f1c1deabe0df8fd4bba63c2a
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-