General
-
Target
aca0b96126c813b0d29d6fbff9175f8ca62ff2ec6eed83bff76a73ae717cfcb8
-
Size
131KB
-
Sample
220128-xmsnqabda5
-
MD5
1ef3f352d97ba827f446f6e8708aa054
-
SHA1
eb910b00ff92247044ae7c3006c8946b912f798b
-
SHA256
aca0b96126c813b0d29d6fbff9175f8ca62ff2ec6eed83bff76a73ae717cfcb8
-
SHA512
cc58d395b38fe2908a5a6c58ef8a53eadf434ef27eafed19f6564d9cad04761575e0d8c0d1d68a5ee94edf066365d7fee2737c0e76ee4326c73dfee1c7f6b91d
Static task
static1
Behavioral task
behavioral1
Sample
aca0b96126c813b0d29d6fbff9175f8ca62ff2ec6eed83bff76a73ae717cfcb8.dll
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
aca0b96126c813b0d29d6fbff9175f8ca62ff2ec6eed83bff76a73ae717cfcb8.dll
Resource
win10-en-20211208
Malware Config
Extracted
C:\MWVYCU-DECRYPT.txt
http://gandcrabmfe6mnef.onion/7ef9cdc3f8338a58
Targets
-
-
Target
aca0b96126c813b0d29d6fbff9175f8ca62ff2ec6eed83bff76a73ae717cfcb8
-
Size
131KB
-
MD5
1ef3f352d97ba827f446f6e8708aa054
-
SHA1
eb910b00ff92247044ae7c3006c8946b912f798b
-
SHA256
aca0b96126c813b0d29d6fbff9175f8ca62ff2ec6eed83bff76a73ae717cfcb8
-
SHA512
cc58d395b38fe2908a5a6c58ef8a53eadf434ef27eafed19f6564d9cad04761575e0d8c0d1d68a5ee94edf066365d7fee2737c0e76ee4326c73dfee1c7f6b91d
Score10/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-