General
-
Target
fc1ab9a3235ff911611dc981a2d2287da56b2c88793968e8e18fc58fbe99a94d
-
Size
329KB
-
Sample
221108-zjfwvshgfj
-
MD5
0ba3d397fbc1925b85f6cea8686dab40
-
SHA1
0fd696ee44e5f78b8a52a309cb496934f1e8b6b8
-
SHA256
fc1ab9a3235ff911611dc981a2d2287da56b2c88793968e8e18fc58fbe99a94d
-
SHA512
c552b14caaa149a961acf667c871efd8b9ed003fefa332d5ded665614762a17e577a1ea13d291ae2ec5135343290afba0d01e6cc91138d2c6b3032c1aee74c3b
-
SSDEEP
6144:MqpxvlACym6wGGWFGDwZyoJ3fzBeM6SpktqHQI6mVk8cL3/CzYjsHh:MqjvlA06wLBHAf9eMvHwmVkhL36zYwHh
Static task
static1
Behavioral task
behavioral1
Sample
fc1ab9a3235ff911611dc981a2d2287da56b2c88793968e8e18fc58fbe99a94d.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
fc1ab9a3235ff911611dc981a2d2287da56b2c88793968e8e18fc58fbe99a94d.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
fc1ab9a3235ff911611dc981a2d2287da56b2c88793968e8e18fc58fbe99a94d
-
Size
329KB
-
MD5
0ba3d397fbc1925b85f6cea8686dab40
-
SHA1
0fd696ee44e5f78b8a52a309cb496934f1e8b6b8
-
SHA256
fc1ab9a3235ff911611dc981a2d2287da56b2c88793968e8e18fc58fbe99a94d
-
SHA512
c552b14caaa149a961acf667c871efd8b9ed003fefa332d5ded665614762a17e577a1ea13d291ae2ec5135343290afba0d01e6cc91138d2c6b3032c1aee74c3b
-
SSDEEP
6144:MqpxvlACym6wGGWFGDwZyoJ3fzBeM6SpktqHQI6mVk8cL3/CzYjsHh:MqjvlA06wLBHAf9eMvHwmVkhL36zYwHh
Score8/10-
Drops file in Drivers directory
-
Possible privilege escalation attempt
-
Sets service image path in registry
-
Deletes itself
-
Modifies file permissions
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Drops file in System32 directory
-