General
-
Target
2992f676851f6952a2d320102af62a190efb24a9a9946c1f777f69f389e5afe1
-
Size
846KB
-
Sample
221127-t3kq9sbh92
-
MD5
7cfdc65f4feb349feb8e0024604e1313
-
SHA1
0acf2ee8a5cfe9d6f1dec5a0aed15bee45746527
-
SHA256
2992f676851f6952a2d320102af62a190efb24a9a9946c1f777f69f389e5afe1
-
SHA512
34fa60c4625424658798c056a6a748d33f911895ef1fb4a743e0b9441afb27bb320e2cf38a0d9dac434b9d0eff0fccec5deebf38f1457593a6d708b7fe4ff90d
-
SSDEEP
24576:yws5IlKswgKNn0bVPi8zPsPy2Hhc+2w2fMQdxN:ydIF+0bM8z0JHu9b/
Static task
static1
Behavioral task
behavioral1
Sample
2992f676851f6952a2d320102af62a190efb24a9a9946c1f777f69f389e5afe1.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
2992f676851f6952a2d320102af62a190efb24a9a9946c1f777f69f389e5afe1.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
2992f676851f6952a2d320102af62a190efb24a9a9946c1f777f69f389e5afe1
-
Size
846KB
-
MD5
7cfdc65f4feb349feb8e0024604e1313
-
SHA1
0acf2ee8a5cfe9d6f1dec5a0aed15bee45746527
-
SHA256
2992f676851f6952a2d320102af62a190efb24a9a9946c1f777f69f389e5afe1
-
SHA512
34fa60c4625424658798c056a6a748d33f911895ef1fb4a743e0b9441afb27bb320e2cf38a0d9dac434b9d0eff0fccec5deebf38f1457593a6d708b7fe4ff90d
-
SSDEEP
24576:yws5IlKswgKNn0bVPi8zPsPy2Hhc+2w2fMQdxN:ydIF+0bM8z0JHu9b/
Score8/10-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-