General
-
Target
ab2a89c9b33bd518ea9f1a53cf74283795acaf19218076d78a765fde28d67790
-
Size
193KB
-
Sample
221127-w7yj2ahh46
-
MD5
e05eeee6d2bdf27d5dc83910ac7ca93b
-
SHA1
c1985c15c8a4f84928e7832041c86b6d089c14fc
-
SHA256
ab2a89c9b33bd518ea9f1a53cf74283795acaf19218076d78a765fde28d67790
-
SHA512
c152327a1e9dff584b7a2ff0fae2a5ed6444c69ada6a6a6b862e62103c36c09b8647f84806f97fc3cfa59bd470a8c0d209df95de02891d11241bde826e181afc
-
SSDEEP
3072:OzA2AJKoClrGvNPuCGYR69X3wKvzNVL58ACjOJBfgPV+Muce:Ogs3YR65nVTtyPVBe
Static task
static1
Behavioral task
behavioral1
Sample
ab2a89c9b33bd518ea9f1a53cf74283795acaf19218076d78a765fde28d67790.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ab2a89c9b33bd518ea9f1a53cf74283795acaf19218076d78a765fde28d67790.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
ab2a89c9b33bd518ea9f1a53cf74283795acaf19218076d78a765fde28d67790
-
Size
193KB
-
MD5
e05eeee6d2bdf27d5dc83910ac7ca93b
-
SHA1
c1985c15c8a4f84928e7832041c86b6d089c14fc
-
SHA256
ab2a89c9b33bd518ea9f1a53cf74283795acaf19218076d78a765fde28d67790
-
SHA512
c152327a1e9dff584b7a2ff0fae2a5ed6444c69ada6a6a6b862e62103c36c09b8647f84806f97fc3cfa59bd470a8c0d209df95de02891d11241bde826e181afc
-
SSDEEP
3072:OzA2AJKoClrGvNPuCGYR69X3wKvzNVL58ACjOJBfgPV+Muce:Ogs3YR65nVTtyPVBe
Score9/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of SetThreadContext
-