General
-
Target
2418b0dab1e2fd1538066a99c8839b9089e3936043014238e2fa80f68170049f
-
Size
117KB
-
Sample
221020-k3smfaehf9
-
MD5
498dd50a6d6d175c0609c1892b4aedf1
-
SHA1
2f87fcb10cfcaa9b6b78c79677230c26199dbc63
-
SHA256
2418b0dab1e2fd1538066a99c8839b9089e3936043014238e2fa80f68170049f
-
SHA512
0c8f14b4c71ba336879c8276e8bfa20ff4125029d039756a9d9bfa5a4218813f4f9c349cbf9bd20436e4205b482f7e034bc8f605c058153ca659c5c4722a51ac
-
SSDEEP
3072:llYHZhfiFXNHMgPnGfMSKvaV/E77Xj9Qxl:LYHWXNHMknGfQaV/EHXjix
Malware Config
Targets
-
-
Target
2418b0dab1e2fd1538066a99c8839b9089e3936043014238e2fa80f68170049f
-
Size
117KB
-
MD5
498dd50a6d6d175c0609c1892b4aedf1
-
SHA1
2f87fcb10cfcaa9b6b78c79677230c26199dbc63
-
SHA256
2418b0dab1e2fd1538066a99c8839b9089e3936043014238e2fa80f68170049f
-
SHA512
0c8f14b4c71ba336879c8276e8bfa20ff4125029d039756a9d9bfa5a4218813f4f9c349cbf9bd20436e4205b482f7e034bc8f605c058153ca659c5c4722a51ac
-
SSDEEP
3072:llYHZhfiFXNHMgPnGfMSKvaV/E77Xj9Qxl:LYHWXNHMknGfQaV/EHXjix
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of SetThreadContext
-