General
-
Target
b4ba7556dd679f02be4a2942a2cae0eaf7083abc13e55c47f81b1405d3327d69
-
Size
1.2MB
-
Sample
221124-jl51rshf44
-
MD5
01cf8f719fe12bb29996c7f30dfeaa00
-
SHA1
2fc1b2fc9f35ff6dda620c661683609be4e8206c
-
SHA256
b4ba7556dd679f02be4a2942a2cae0eaf7083abc13e55c47f81b1405d3327d69
-
SHA512
42b469e832c071d4214fd593b6c785b106fa2fe0ffce305b859a694831cb245ca8fa265f4e1f2b3512415ad612ed3c7ee7b0eb4f719770a4d1ad3e728dc25e7f
-
SSDEEP
24576:iYH4wSEoFeFcbJNmcY8+ACqAqPH2VmG3D:iYeLNx0qJf2cE
Static task
static1
Behavioral task
behavioral1
Sample
b4ba7556dd679f02be4a2942a2cae0eaf7083abc13e55c47f81b1405d3327d69.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
b4ba7556dd679f02be4a2942a2cae0eaf7083abc13e55c47f81b1405d3327d69.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
b4ba7556dd679f02be4a2942a2cae0eaf7083abc13e55c47f81b1405d3327d69
-
Size
1.2MB
-
MD5
01cf8f719fe12bb29996c7f30dfeaa00
-
SHA1
2fc1b2fc9f35ff6dda620c661683609be4e8206c
-
SHA256
b4ba7556dd679f02be4a2942a2cae0eaf7083abc13e55c47f81b1405d3327d69
-
SHA512
42b469e832c071d4214fd593b6c785b106fa2fe0ffce305b859a694831cb245ca8fa265f4e1f2b3512415ad612ed3c7ee7b0eb4f719770a4d1ad3e728dc25e7f
-
SSDEEP
24576:iYH4wSEoFeFcbJNmcY8+ACqAqPH2VmG3D:iYeLNx0qJf2cE
Score9/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-