General
-
Target
c2c12f037eaed386f44de67d0aa4a6c9ebce4cf884f51711f5774d630f59b639
-
Size
909KB
-
Sample
221003-qw8b7shefp
-
MD5
49d7aa485f5bc619fab70018135fe746
-
SHA1
35d6bc56d95159fa0b2052d3476433c4eb44915b
-
SHA256
c2c12f037eaed386f44de67d0aa4a6c9ebce4cf884f51711f5774d630f59b639
-
SHA512
30c7d79ff9000b55f300a0cef99433f11cdd2468903ae9892f482c0224891a9eca8cf0cec03b23889488c95e0ef74d686d65622c71f6a89321d50c925b22f8a8
-
SSDEEP
3072:ngv9bqpaMausTDYBh7SYmdULiiLnEKhf0TTE5jk/RtRlHAkAtzfKtLy8YFqhctm5:KZu5Zh7ydGnEIjagkAtzuNcdtxEUvLIT
Malware Config
Targets
-
-
Target
c2c12f037eaed386f44de67d0aa4a6c9ebce4cf884f51711f5774d630f59b639
-
Size
909KB
-
MD5
49d7aa485f5bc619fab70018135fe746
-
SHA1
35d6bc56d95159fa0b2052d3476433c4eb44915b
-
SHA256
c2c12f037eaed386f44de67d0aa4a6c9ebce4cf884f51711f5774d630f59b639
-
SHA512
30c7d79ff9000b55f300a0cef99433f11cdd2468903ae9892f482c0224891a9eca8cf0cec03b23889488c95e0ef74d686d65622c71f6a89321d50c925b22f8a8
-
SSDEEP
3072:ngv9bqpaMausTDYBh7SYmdULiiLnEKhf0TTE5jk/RtRlHAkAtzfKtLy8YFqhctm5:KZu5Zh7ydGnEIjagkAtzuNcdtxEUvLIT
Score8/10-
Adds policy Run key to start application
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Deletes itself
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-
Drops file in System32 directory
-