General
-
Target
88757631988c9544b36f0212cf7cdf6c621d5005b99b64c238f4f7c487eb89f2
-
Size
706KB
-
Sample
221123-q2grfaae2z
-
MD5
d5ae8a95a74e4e6c37e21ba2a4eefb09
-
SHA1
c41fbff4e3639b2563eeb97f9a90d357a26d665c
-
SHA256
88757631988c9544b36f0212cf7cdf6c621d5005b99b64c238f4f7c487eb89f2
-
SHA512
a1c080195281c3b7cc6cd34cd07c1471c7abf9980b0f6b51f181bbea9055d1209c52cd46c201a365079a191c2ad9bc64907509bdcd1cc06201c6910fbadd1d71
-
SSDEEP
12288:vdNxMB4UKc/WL6Ls5K0NGi5n6hft0TxssvHMpssp:LxDs/ZSG/feGsvHCr
Static task
static1
Behavioral task
behavioral1
Sample
88757631988c9544b36f0212cf7cdf6c621d5005b99b64c238f4f7c487eb89f2.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
88757631988c9544b36f0212cf7cdf6c621d5005b99b64c238f4f7c487eb89f2.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
88757631988c9544b36f0212cf7cdf6c621d5005b99b64c238f4f7c487eb89f2
-
Size
706KB
-
MD5
d5ae8a95a74e4e6c37e21ba2a4eefb09
-
SHA1
c41fbff4e3639b2563eeb97f9a90d357a26d665c
-
SHA256
88757631988c9544b36f0212cf7cdf6c621d5005b99b64c238f4f7c487eb89f2
-
SHA512
a1c080195281c3b7cc6cd34cd07c1471c7abf9980b0f6b51f181bbea9055d1209c52cd46c201a365079a191c2ad9bc64907509bdcd1cc06201c6910fbadd1d71
-
SSDEEP
12288:vdNxMB4UKc/WL6Ls5K0NGi5n6hft0TxssvHMpssp:LxDs/ZSG/feGsvHCr
Score9/10-
Modifies boot configuration data using bcdedit
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-