General
-
Target
57c5a1a41a3e366f43cef2b6d31b4970b92fc04b92b32489994a1abeeea77417
-
Size
1.1MB
-
Sample
220524-wbpl9afggk
-
MD5
e22f5c3e65784a5cab601d04ac66108a
-
SHA1
e0d37a1d88520bf478e2799a04b119f83f53650f
-
SHA256
57c5a1a41a3e366f43cef2b6d31b4970b92fc04b92b32489994a1abeeea77417
-
SHA512
08977a8e85f306f31eac5a5dc45d2fe85f984c5f49c6866fe383d9ce86afba1dd837d7181f76d157893b7b1d89c9444a995de344984ede7141d9310003d03dee
Static task
static1
Behavioral task
behavioral1
Sample
57c5a1a41a3e366f43cef2b6d31b4970b92fc04b92b32489994a1abeeea77417.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
57c5a1a41a3e366f43cef2b6d31b4970b92fc04b92b32489994a1abeeea77417.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
57c5a1a41a3e366f43cef2b6d31b4970b92fc04b92b32489994a1abeeea77417
-
Size
1.1MB
-
MD5
e22f5c3e65784a5cab601d04ac66108a
-
SHA1
e0d37a1d88520bf478e2799a04b119f83f53650f
-
SHA256
57c5a1a41a3e366f43cef2b6d31b4970b92fc04b92b32489994a1abeeea77417
-
SHA512
08977a8e85f306f31eac5a5dc45d2fe85f984c5f49c6866fe383d9ce86afba1dd837d7181f76d157893b7b1d89c9444a995de344984ede7141d9310003d03dee
Score8/10-
Downloads MZ/PE file
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-