General
-
Target
e7e175f13efb06b883eadbcf64763d17f82447363ec1806be9bbf751dae200de
-
Size
860KB
-
Sample
221123-p2kyescg93
-
MD5
d446cc682dc1aaf3811524d796e9c10c
-
SHA1
6e75979cd990273413d1e20fe45a3e1d73422b77
-
SHA256
e7e175f13efb06b883eadbcf64763d17f82447363ec1806be9bbf751dae200de
-
SHA512
ff8db73394fb966f403423ee52fa0155430effe8544ad376799fb812d7cc55805c7beb7ba85b6e74c3ae3116592376f1abe6465a6b6730f7cb926523817160e4
-
SSDEEP
24576:7Tvtt6UDKwny3EAV1xnDwdfJj50jscibFo1:H1vy0qTohj5pN
Malware Config
Targets
-
-
Target
e7e175f13efb06b883eadbcf64763d17f82447363ec1806be9bbf751dae200de
-
Size
860KB
-
MD5
d446cc682dc1aaf3811524d796e9c10c
-
SHA1
6e75979cd990273413d1e20fe45a3e1d73422b77
-
SHA256
e7e175f13efb06b883eadbcf64763d17f82447363ec1806be9bbf751dae200de
-
SHA512
ff8db73394fb966f403423ee52fa0155430effe8544ad376799fb812d7cc55805c7beb7ba85b6e74c3ae3116592376f1abe6465a6b6730f7cb926523817160e4
-
SSDEEP
24576:7Tvtt6UDKwny3EAV1xnDwdfJj50jscibFo1:H1vy0qTohj5pN
Score8/10-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-