General
-
Target
41b436d9923f7adfb01ab07302117c20d92c5aba5b10109a38614af1cc5a18a8
-
Size
666KB
-
Sample
220708-fh9b8sccd9
-
MD5
765e631ab0eeb349ee1349a1220d26e4
-
SHA1
72c264c5587cabaa4ae0fbe7bc3e4059e15dfcd6
-
SHA256
41b436d9923f7adfb01ab07302117c20d92c5aba5b10109a38614af1cc5a18a8
-
SHA512
65c17c195c431b0cf2096f1dc85b8d13fcd0408b9439aad8cb064aa4d4ae67a8418c40d465155914c6c48f2acfe2676f822e6324adfd1ebbf55f82a7fb4b6b67
Static task
static1
Behavioral task
behavioral1
Sample
41b436d9923f7adfb01ab07302117c20d92c5aba5b10109a38614af1cc5a18a8.exe
Resource
win7-20220414-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
41b436d9923f7adfb01ab07302117c20d92c5aba5b10109a38614af1cc5a18a8
-
Size
666KB
-
MD5
765e631ab0eeb349ee1349a1220d26e4
-
SHA1
72c264c5587cabaa4ae0fbe7bc3e4059e15dfcd6
-
SHA256
41b436d9923f7adfb01ab07302117c20d92c5aba5b10109a38614af1cc5a18a8
-
SHA512
65c17c195c431b0cf2096f1dc85b8d13fcd0408b9439aad8cb064aa4d4ae67a8418c40d465155914c6c48f2acfe2676f822e6324adfd1ebbf55f82a7fb4b6b67
-
Modifies firewall policy service
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-