General
-
Target
38728c29761e4eb7d4a033fca4314b2078347bb0e6c3075152abb9c04c918200
-
Size
969KB
-
Sample
221125-c94dhsae41
-
MD5
e267361952c70e4477944efffc41e84c
-
SHA1
30c94cb118b41089e574441a08da8a236bd34324
-
SHA256
38728c29761e4eb7d4a033fca4314b2078347bb0e6c3075152abb9c04c918200
-
SHA512
6c7a9035f0382681e83f77487e6990d4119e883246aa8704f8e7b6113c26570797f1f69e72b99add373600ceb17977fc92d94506258c3fdbd952ff4f3562da53
-
SSDEEP
12288:aJSp5mPQmbJ+IiJevZP5xmJgStg3qrYohzfvGrYohzfv:aJ3PNrvZyg0g3GYizfyYizf
Static task
static1
Behavioral task
behavioral1
Sample
38728c29761e4eb7d4a033fca4314b2078347bb0e6c3075152abb9c04c918200.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
38728c29761e4eb7d4a033fca4314b2078347bb0e6c3075152abb9c04c918200.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
38728c29761e4eb7d4a033fca4314b2078347bb0e6c3075152abb9c04c918200
-
Size
969KB
-
MD5
e267361952c70e4477944efffc41e84c
-
SHA1
30c94cb118b41089e574441a08da8a236bd34324
-
SHA256
38728c29761e4eb7d4a033fca4314b2078347bb0e6c3075152abb9c04c918200
-
SHA512
6c7a9035f0382681e83f77487e6990d4119e883246aa8704f8e7b6113c26570797f1f69e72b99add373600ceb17977fc92d94506258c3fdbd952ff4f3562da53
-
SSDEEP
12288:aJSp5mPQmbJ+IiJevZP5xmJgStg3qrYohzfvGrYohzfv:aJ3PNrvZyg0g3GYizfyYizf
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
Suspicious use of SetThreadContext
-