General
-
Target
925179ae977026a407fcacba6c42bf28c0db1ae4abcc7838dcc02d64967f76f3
-
Size
5.6MB
-
Sample
220508-sy83madhdm
-
MD5
f3433495a1a45857b3192203617166d1
-
SHA1
e30fee713805f3f6985b0d9bfc3ac270c9a9b995
-
SHA256
925179ae977026a407fcacba6c42bf28c0db1ae4abcc7838dcc02d64967f76f3
-
SHA512
94a1bf66d86be1a0ecac6f51fe45c7da6c62989abcd6293c104c78dd2d29293de905cec3123170d7a5e640e634c4497942c87d54433b9da1628d785c8d3cce67
Static task
static1
Behavioral task
behavioral1
Sample
925179ae977026a407fcacba6c42bf28c0db1ae4abcc7838dcc02d64967f76f3.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
925179ae977026a407fcacba6c42bf28c0db1ae4abcc7838dcc02d64967f76f3
-
Size
5.6MB
-
MD5
f3433495a1a45857b3192203617166d1
-
SHA1
e30fee713805f3f6985b0d9bfc3ac270c9a9b995
-
SHA256
925179ae977026a407fcacba6c42bf28c0db1ae4abcc7838dcc02d64967f76f3
-
SHA512
94a1bf66d86be1a0ecac6f51fe45c7da6c62989abcd6293c104c78dd2d29293de905cec3123170d7a5e640e634c4497942c87d54433b9da1628d785c8d3cce67
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-