General
-
Target
d33ba4f4be16187eb4f8986e736462ddce83a5a0826ce60ca0a37fe7d0a2f642
-
Size
179KB
-
Sample
221125-hs3csahf83
-
MD5
55f309fc11b602dd367d73c9d0144094
-
SHA1
fe7e90a105714abf4ba1a4a189748711c2bbc852
-
SHA256
d33ba4f4be16187eb4f8986e736462ddce83a5a0826ce60ca0a37fe7d0a2f642
-
SHA512
4f213acc70a68be49eb69d8e85c7654a05ec3f0b2230cf5b4cfa94ec2b7253f6765f14f8e92926f5167109eb56ce72438e075fffa10a8f1d3b9e0733b2f44490
-
SSDEEP
3072:qtLJogRsyi4A9790BFHBixbG0zfa6Ko9koszpBvLQpCQZ9t:qtLJsb990BFQi0zwoCpJQ7t
Static task
static1
Behavioral task
behavioral1
Sample
d33ba4f4be16187eb4f8986e736462ddce83a5a0826ce60ca0a37fe7d0a2f642.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
d33ba4f4be16187eb4f8986e736462ddce83a5a0826ce60ca0a37fe7d0a2f642.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
d33ba4f4be16187eb4f8986e736462ddce83a5a0826ce60ca0a37fe7d0a2f642
-
Size
179KB
-
MD5
55f309fc11b602dd367d73c9d0144094
-
SHA1
fe7e90a105714abf4ba1a4a189748711c2bbc852
-
SHA256
d33ba4f4be16187eb4f8986e736462ddce83a5a0826ce60ca0a37fe7d0a2f642
-
SHA512
4f213acc70a68be49eb69d8e85c7654a05ec3f0b2230cf5b4cfa94ec2b7253f6765f14f8e92926f5167109eb56ce72438e075fffa10a8f1d3b9e0733b2f44490
-
SSDEEP
3072:qtLJogRsyi4A9790BFHBixbG0zfa6Ko9koszpBvLQpCQZ9t:qtLJsb990BFQi0zwoCpJQ7t
Score9/10-
Executes dropped EXE
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of SetThreadContext
-