General
-
Target
375c5e58dedee1bf0a4d323d61b60f3fcb9abbde4caecdd5bc90094dda82c1f0
-
Size
196KB
-
Sample
220707-efbgraehc2
-
MD5
9cd19948f83475fb9d10ec11c91845f0
-
SHA1
44821571c4d007aa3ea57b66ff92de7170f0699a
-
SHA256
375c5e58dedee1bf0a4d323d61b60f3fcb9abbde4caecdd5bc90094dda82c1f0
-
SHA512
f91348d73ef63a0c492e0fc46de19bc2cfb46fc68063575c2d696fc36bdec2e291a8d91b8a1e5f5fdba5b05412643a0e79e2a259e1e801e06c6b15a53e2f3f9f
Static task
static1
Behavioral task
behavioral1
Sample
375c5e58dedee1bf0a4d323d61b60f3fcb9abbde4caecdd5bc90094dda82c1f0.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
375c5e58dedee1bf0a4d323d61b60f3fcb9abbde4caecdd5bc90094dda82c1f0.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
375c5e58dedee1bf0a4d323d61b60f3fcb9abbde4caecdd5bc90094dda82c1f0
-
Size
196KB
-
MD5
9cd19948f83475fb9d10ec11c91845f0
-
SHA1
44821571c4d007aa3ea57b66ff92de7170f0699a
-
SHA256
375c5e58dedee1bf0a4d323d61b60f3fcb9abbde4caecdd5bc90094dda82c1f0
-
SHA512
f91348d73ef63a0c492e0fc46de19bc2cfb46fc68063575c2d696fc36bdec2e291a8d91b8a1e5f5fdba5b05412643a0e79e2a259e1e801e06c6b15a53e2f3f9f
Score10/10-
Modifies WinLogon for persistence
-
Modifies system executable filetype association
-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Disables RegEdit via registry modification
-
Disables use of System Restore points
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses Microsoft Outlook profiles
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-