General
-
Target
abe1d2eca52bf75ae14e0016d2e96ba3e6947c294fcc52def005c3f70ddd0a35
-
Size
3.5MB
-
Sample
221124-e21nrshb33
-
MD5
1d1670ed4dadee41648efd4d46e158f9
-
SHA1
000b4b149a512491e61d6c852400658ed7e793de
-
SHA256
abe1d2eca52bf75ae14e0016d2e96ba3e6947c294fcc52def005c3f70ddd0a35
-
SHA512
57ec277007ceb8d8de187209aa2cd4b45e9419d31ebbdf71fa4c598494c57e3f6f7332e543b3cbe57d08773866085c4e672ab482bb37e80771daf67ad560aaae
-
SSDEEP
98304:nfIPhb+R90rbEVparzcBYrtsSp03EZmE3pW/Ppl6Y6K+M4T:n+hb+f0PRvvrVpJZTY/BwE4T
Static task
static1
Behavioral task
behavioral1
Sample
abe1d2eca52bf75ae14e0016d2e96ba3e6947c294fcc52def005c3f70ddd0a35.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
abe1d2eca52bf75ae14e0016d2e96ba3e6947c294fcc52def005c3f70ddd0a35.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
abe1d2eca52bf75ae14e0016d2e96ba3e6947c294fcc52def005c3f70ddd0a35
-
Size
3.5MB
-
MD5
1d1670ed4dadee41648efd4d46e158f9
-
SHA1
000b4b149a512491e61d6c852400658ed7e793de
-
SHA256
abe1d2eca52bf75ae14e0016d2e96ba3e6947c294fcc52def005c3f70ddd0a35
-
SHA512
57ec277007ceb8d8de187209aa2cd4b45e9419d31ebbdf71fa4c598494c57e3f6f7332e543b3cbe57d08773866085c4e672ab482bb37e80771daf67ad560aaae
-
SSDEEP
98304:nfIPhb+R90rbEVparzcBYrtsSp03EZmE3pW/Ppl6Y6K+M4T:n+hb+f0PRvvrVpJZTY/BwE4T
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-