General
-
Target
286e7722e1e028c61bfe0c886f65798b293ef81b56807373bbdce09800b6c16e
-
Size
182KB
-
Sample
221125-j23kksch88
-
MD5
80bc0154f11ae4eef55b00c464ae1723
-
SHA1
312fe24ecf4c6d84ef7d05a8c3ae85230920b884
-
SHA256
286e7722e1e028c61bfe0c886f65798b293ef81b56807373bbdce09800b6c16e
-
SHA512
198de65ec5764acf57223c1e8059786bfe8176145e1ecddd17ffc906ccb05c17d2ff483922f56a45df8f49629e5bc7137e54555c4b2aa193c772e7342d6aa12a
-
SSDEEP
3072:QGO+VHFPy4q+og2XLD9ryWacSMnqBSMVHjRcg:QeVHiJg69GWaSq8Mpdc
Static task
static1
Behavioral task
behavioral1
Sample
286e7722e1e028c61bfe0c886f65798b293ef81b56807373bbdce09800b6c16e.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
286e7722e1e028c61bfe0c886f65798b293ef81b56807373bbdce09800b6c16e.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
286e7722e1e028c61bfe0c886f65798b293ef81b56807373bbdce09800b6c16e
-
Size
182KB
-
MD5
80bc0154f11ae4eef55b00c464ae1723
-
SHA1
312fe24ecf4c6d84ef7d05a8c3ae85230920b884
-
SHA256
286e7722e1e028c61bfe0c886f65798b293ef81b56807373bbdce09800b6c16e
-
SHA512
198de65ec5764acf57223c1e8059786bfe8176145e1ecddd17ffc906ccb05c17d2ff483922f56a45df8f49629e5bc7137e54555c4b2aa193c772e7342d6aa12a
-
SSDEEP
3072:QGO+VHFPy4q+og2XLD9ryWacSMnqBSMVHjRcg:QeVHiJg69GWaSq8Mpdc
Score7/10-
Deletes itself
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of SetThreadContext
-