General
-
Target
df89b904c0a0650210356214e8b92d924a13bf3695fb62dea047a2ed4dc4b7f7
-
Size
1.0MB
-
Sample
210518-gayg3myjds
-
MD5
9cd3fb0a168fce863e1fdc01407a0ef3
-
SHA1
90099429827cccdf8b191151e0eb1a8c6c519f09
-
SHA256
df89b904c0a0650210356214e8b92d924a13bf3695fb62dea047a2ed4dc4b7f7
-
SHA512
235b96d1e2ddb88b4b6f6d8041ef6890f00b7edd50f8c5fca61276624876c7638070e2a134e99c91e332ea3af0a5ed6efecc0b99a9f5985530537ac702f6754e
Static task
static1
Behavioral task
behavioral1
Sample
df89b904c0a0650210356214e8b92d924a13bf3695fb62dea047a2ed4dc4b7f7.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
df89b904c0a0650210356214e8b92d924a13bf3695fb62dea047a2ed4dc4b7f7.exe
Resource
win10v20210410
Malware Config
Targets
-
-
Target
df89b904c0a0650210356214e8b92d924a13bf3695fb62dea047a2ed4dc4b7f7
-
Size
1.0MB
-
MD5
9cd3fb0a168fce863e1fdc01407a0ef3
-
SHA1
90099429827cccdf8b191151e0eb1a8c6c519f09
-
SHA256
df89b904c0a0650210356214e8b92d924a13bf3695fb62dea047a2ed4dc4b7f7
-
SHA512
235b96d1e2ddb88b4b6f6d8041ef6890f00b7edd50f8c5fca61276624876c7638070e2a134e99c91e332ea3af0a5ed6efecc0b99a9f5985530537ac702f6754e
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-