General
-
Target
c63fbd4721357ea494b85300e3d8b328b248f222d43671808e77cc11e8a0704b
-
Size
328KB
-
Sample
221107-mnhvssbhb5
-
MD5
08fe3e19f565ad8689b9a5e992640250
-
SHA1
43a243a95988846fb818366d8d9e5ecdea8935ff
-
SHA256
c63fbd4721357ea494b85300e3d8b328b248f222d43671808e77cc11e8a0704b
-
SHA512
c50e5f78e55112339b6128acd5066c87184a70858cff7a16f28cf364369c1f0065d26fa941f1061eb8de81475ceeda53294d7acc9517ee4a721f7a4414db3098
-
SSDEEP
6144:QyWOeLm+tkxoGQvT+W4+HMc+MEGRQ6saHSMf3z0AzbLUG50Tpm+MmvbWdlL0d5aU:QCemx0vN3HKGi6sYjJLUGGtedud5tr7
Malware Config
Targets
-
-
Target
c63fbd4721357ea494b85300e3d8b328b248f222d43671808e77cc11e8a0704b
-
Size
328KB
-
MD5
08fe3e19f565ad8689b9a5e992640250
-
SHA1
43a243a95988846fb818366d8d9e5ecdea8935ff
-
SHA256
c63fbd4721357ea494b85300e3d8b328b248f222d43671808e77cc11e8a0704b
-
SHA512
c50e5f78e55112339b6128acd5066c87184a70858cff7a16f28cf364369c1f0065d26fa941f1061eb8de81475ceeda53294d7acc9517ee4a721f7a4414db3098
-
SSDEEP
6144:QyWOeLm+tkxoGQvT+W4+HMc+MEGRQ6saHSMf3z0AzbLUG50Tpm+MmvbWdlL0d5aU:QCemx0vN3HKGi6sYjJLUGGtedud5tr7
Score8/10-
Drops file in Drivers directory
-
Possible privilege escalation attempt
-
Sets service image path in registry
-
Deletes itself
-
Modifies file permissions
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Drops file in System32 directory
-