General
-
Target
91fd407437478499b61f53ab7ace4fc0a3c2ed6bd5ed2cc3cbcfb89c1b02fcce
-
Size
328KB
-
Sample
221120-j1fdnadf52
-
MD5
07e6b8a7d2cb05fa896ed147d705a6a0
-
SHA1
20b7808356e703890a75ce6de876d6012ce99e06
-
SHA256
91fd407437478499b61f53ab7ace4fc0a3c2ed6bd5ed2cc3cbcfb89c1b02fcce
-
SHA512
4ca8c159e2d78c739bf22ead3664da8a1dcac41c540d4362a113a6a3ab225980402486a97d9f8d40f061f9a8ff796d93828425ddb34dbafdd983df15d3f7ae96
-
SSDEEP
6144:MyWOeLm+tkxoGQvT+W4+HMc+MEGRQ6saHSMf3z0AzbLUG50Tpm+MmvbWdlL0d5aU:MCemx0vN3HKGi6sYjJLUGGtedud5tr7
Static task
static1
Behavioral task
behavioral1
Sample
91fd407437478499b61f53ab7ace4fc0a3c2ed6bd5ed2cc3cbcfb89c1b02fcce.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
91fd407437478499b61f53ab7ace4fc0a3c2ed6bd5ed2cc3cbcfb89c1b02fcce.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
91fd407437478499b61f53ab7ace4fc0a3c2ed6bd5ed2cc3cbcfb89c1b02fcce
-
Size
328KB
-
MD5
07e6b8a7d2cb05fa896ed147d705a6a0
-
SHA1
20b7808356e703890a75ce6de876d6012ce99e06
-
SHA256
91fd407437478499b61f53ab7ace4fc0a3c2ed6bd5ed2cc3cbcfb89c1b02fcce
-
SHA512
4ca8c159e2d78c739bf22ead3664da8a1dcac41c540d4362a113a6a3ab225980402486a97d9f8d40f061f9a8ff796d93828425ddb34dbafdd983df15d3f7ae96
-
SSDEEP
6144:MyWOeLm+tkxoGQvT+W4+HMc+MEGRQ6saHSMf3z0AzbLUG50Tpm+MmvbWdlL0d5aU:MCemx0vN3HKGi6sYjJLUGGtedud5tr7
Score8/10-
Drops file in Drivers directory
-
Possible privilege escalation attempt
-
Sets service image path in registry
-
Deletes itself
-
Modifies file permissions
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Drops file in System32 directory
-