General
-
Target
9c2e91901d35fe454c53c0e775b9da3d743aa498ee9efb31b850e7e027f2649a
-
Size
328KB
-
Sample
221108-2fnteadbgp
-
MD5
0eb90069e54a8f94341e76c936e4f8b0
-
SHA1
cfbe66e1e5cc6ef184d21584665c2b11dda14548
-
SHA256
9c2e91901d35fe454c53c0e775b9da3d743aa498ee9efb31b850e7e027f2649a
-
SHA512
e5f80c6ba7992e8cc6153d97cacf8aa6fb1ae83c8a4e176d325ac4076183e150659236d01cecedc887fbd9907ee72c728d825dcf28105919cfb4e8eb8cef4268
-
SSDEEP
6144:KyWOeLm+tkxoGQvT+W4+HMc+MEGRQ6saHSMf3z0AzbLUG50Tpm+MmvbWdlL0d5aU:KCemx0vN3HKGi6sYjJLUGGtedud5tr7
Static task
static1
Behavioral task
behavioral1
Sample
9c2e91901d35fe454c53c0e775b9da3d743aa498ee9efb31b850e7e027f2649a.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
9c2e91901d35fe454c53c0e775b9da3d743aa498ee9efb31b850e7e027f2649a.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
9c2e91901d35fe454c53c0e775b9da3d743aa498ee9efb31b850e7e027f2649a
-
Size
328KB
-
MD5
0eb90069e54a8f94341e76c936e4f8b0
-
SHA1
cfbe66e1e5cc6ef184d21584665c2b11dda14548
-
SHA256
9c2e91901d35fe454c53c0e775b9da3d743aa498ee9efb31b850e7e027f2649a
-
SHA512
e5f80c6ba7992e8cc6153d97cacf8aa6fb1ae83c8a4e176d325ac4076183e150659236d01cecedc887fbd9907ee72c728d825dcf28105919cfb4e8eb8cef4268
-
SSDEEP
6144:KyWOeLm+tkxoGQvT+W4+HMc+MEGRQ6saHSMf3z0AzbLUG50Tpm+MmvbWdlL0d5aU:KCemx0vN3HKGi6sYjJLUGGtedud5tr7
Score8/10-
Drops file in Drivers directory
-
Possible privilege escalation attempt
-
Sets service image path in registry
-
Deletes itself
-
Modifies file permissions
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Drops file in System32 directory
-