General
-
Target
a0599336cb5861d9aab6a544ab05399c9c842eb0db071b53f2149fb5f971272d
-
Size
643KB
-
Sample
210518-8ywvjk9tz6
-
MD5
963f1309199615322d727f1439aef5cc
-
SHA1
04e53b689c909a344236c455c938dea5fa5f4e18
-
SHA256
a0599336cb5861d9aab6a544ab05399c9c842eb0db071b53f2149fb5f971272d
-
SHA512
e8d017683ef40c77142469e27fc8daf8c09fb278a9ce826ae71e765e087dde8162ea0127ddf6426eb2c96a44aecc40984e07ed497770aef79ab179d3fa9df2d3
Static task
static1
Behavioral task
behavioral1
Sample
a0599336cb5861d9aab6a544ab05399c9c842eb0db071b53f2149fb5f971272d.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
a0599336cb5861d9aab6a544ab05399c9c842eb0db071b53f2149fb5f971272d.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
a0599336cb5861d9aab6a544ab05399c9c842eb0db071b53f2149fb5f971272d
-
Size
643KB
-
MD5
963f1309199615322d727f1439aef5cc
-
SHA1
04e53b689c909a344236c455c938dea5fa5f4e18
-
SHA256
a0599336cb5861d9aab6a544ab05399c9c842eb0db071b53f2149fb5f971272d
-
SHA512
e8d017683ef40c77142469e27fc8daf8c09fb278a9ce826ae71e765e087dde8162ea0127ddf6426eb2c96a44aecc40984e07ed497770aef79ab179d3fa9df2d3
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-