General
-
Target
1bcd5347777ae3bc76a4654bfa355b6872b8349cd492e9320933a4d23a5b7a3a
-
Size
1.0MB
-
Sample
210518-rzjeraav22
-
MD5
c2d79486de6ec827acfc03a6fbf84617
-
SHA1
6b22d9cf2f219ad0a3dea4412196ba036e02e2de
-
SHA256
1bcd5347777ae3bc76a4654bfa355b6872b8349cd492e9320933a4d23a5b7a3a
-
SHA512
245c932215a4ee42585c6baa4ad0f8bd420e16b16313dfd01067a403c472a63f8bfe2189f5c6c2f3798a66bdb36b80723a589dec8600a6f24a37156d9b930078
Static task
static1
Behavioral task
behavioral1
Sample
1bcd5347777ae3bc76a4654bfa355b6872b8349cd492e9320933a4d23a5b7a3a.exe
Resource
win7v20210410
Behavioral task
behavioral2
Sample
1bcd5347777ae3bc76a4654bfa355b6872b8349cd492e9320933a4d23a5b7a3a.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
1bcd5347777ae3bc76a4654bfa355b6872b8349cd492e9320933a4d23a5b7a3a
-
Size
1.0MB
-
MD5
c2d79486de6ec827acfc03a6fbf84617
-
SHA1
6b22d9cf2f219ad0a3dea4412196ba036e02e2de
-
SHA256
1bcd5347777ae3bc76a4654bfa355b6872b8349cd492e9320933a4d23a5b7a3a
-
SHA512
245c932215a4ee42585c6baa4ad0f8bd420e16b16313dfd01067a403c472a63f8bfe2189f5c6c2f3798a66bdb36b80723a589dec8600a6f24a37156d9b930078
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Drops file in Drivers directory
-
Sets service image path in registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Modifies WinLogon
-