General
-
Target
013dc3972c67585749e962b4caebeaf6e4e9592b3d1027601abe43eb314823be
-
Size
1.1MB
-
Sample
220523-zrbl4sgbd2
-
MD5
49c82d258a5fd1f9c63f429a467bb3b9
-
SHA1
52716ade1a03abb9896f538ca904f4336259ca06
-
SHA256
013dc3972c67585749e962b4caebeaf6e4e9592b3d1027601abe43eb314823be
-
SHA512
18ae3b139170eab0d3b0e5bf3e06e908cfad9cbf2b99798374280f3f8ee363620fa717deed8f8274ad396652e35f7514228f5cce2e301bdcc76114062f0b7167
Static task
static1
Behavioral task
behavioral1
Sample
013dc3972c67585749e962b4caebeaf6e4e9592b3d1027601abe43eb314823be.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
013dc3972c67585749e962b4caebeaf6e4e9592b3d1027601abe43eb314823be.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
013dc3972c67585749e962b4caebeaf6e4e9592b3d1027601abe43eb314823be
-
Size
1.1MB
-
MD5
49c82d258a5fd1f9c63f429a467bb3b9
-
SHA1
52716ade1a03abb9896f538ca904f4336259ca06
-
SHA256
013dc3972c67585749e962b4caebeaf6e4e9592b3d1027601abe43eb314823be
-
SHA512
18ae3b139170eab0d3b0e5bf3e06e908cfad9cbf2b99798374280f3f8ee363620fa717deed8f8274ad396652e35f7514228f5cce2e301bdcc76114062f0b7167
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-