General
-
Target
31a94eda54736423eae2c432c177ff438291d259cdfd19122af55f719a31f981
-
Size
398KB
-
Sample
221125-dmm9fsgb84
-
MD5
7876e5a37a290fc761b601dcec45f566
-
SHA1
3b1374da9f8eb62a1017528633ca23b910884b67
-
SHA256
31a94eda54736423eae2c432c177ff438291d259cdfd19122af55f719a31f981
-
SHA512
b20144859f0dac3e47b2a6d21090e3bf2ef1d45ab8d666185bb06daec2951e3d9ed2ffb85be1c43599c0c61572eb70fd142a03e5a9d37165ab0e3078ab55294b
-
SSDEEP
12288:sgwj35X0zH2T07744h7NlOxSlcO0gz9BzNE:Oz5X6HM0774876md/zS
Static task
static1
Behavioral task
behavioral1
Sample
31a94eda54736423eae2c432c177ff438291d259cdfd19122af55f719a31f981.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
31a94eda54736423eae2c432c177ff438291d259cdfd19122af55f719a31f981.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
31a94eda54736423eae2c432c177ff438291d259cdfd19122af55f719a31f981
-
Size
398KB
-
MD5
7876e5a37a290fc761b601dcec45f566
-
SHA1
3b1374da9f8eb62a1017528633ca23b910884b67
-
SHA256
31a94eda54736423eae2c432c177ff438291d259cdfd19122af55f719a31f981
-
SHA512
b20144859f0dac3e47b2a6d21090e3bf2ef1d45ab8d666185bb06daec2951e3d9ed2ffb85be1c43599c0c61572eb70fd142a03e5a9d37165ab0e3078ab55294b
-
SSDEEP
12288:sgwj35X0zH2T07744h7NlOxSlcO0gz9BzNE:Oz5X6HM0774876md/zS
Score9/10-
Modifies boot configuration data using bcdedit
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-