General
-
Target
30505b93c5f8faff3181d86b5591f16d116238c3b0b599e164436691bfca8317
-
Size
160KB
-
Sample
221127-xwxn2afg4z
-
MD5
cc5d6ee284598e29bbbbbaacf0f2bdb9
-
SHA1
87a6def747f1c6e913c3b08b22eb5bd4d8dc6038
-
SHA256
30505b93c5f8faff3181d86b5591f16d116238c3b0b599e164436691bfca8317
-
SHA512
eb316ffe5b471cad35a4ba280b2497e26e6050583d47c6ed2e97985badb71dccb1a61548f82711dd314e64e592daf4e12f21b35247ecd26f4797fadc81141867
-
SSDEEP
3072:J+Nqwd5/hTdnGDAclTOsUH7VxFiKVO/GRiXkmt7WHMsT4BY8qDOQH:6vhBcloVaKV+GRmwIBob
Malware Config
Targets
-
-
Target
30505b93c5f8faff3181d86b5591f16d116238c3b0b599e164436691bfca8317
-
Size
160KB
-
MD5
cc5d6ee284598e29bbbbbaacf0f2bdb9
-
SHA1
87a6def747f1c6e913c3b08b22eb5bd4d8dc6038
-
SHA256
30505b93c5f8faff3181d86b5591f16d116238c3b0b599e164436691bfca8317
-
SHA512
eb316ffe5b471cad35a4ba280b2497e26e6050583d47c6ed2e97985badb71dccb1a61548f82711dd314e64e592daf4e12f21b35247ecd26f4797fadc81141867
-
SSDEEP
3072:J+Nqwd5/hTdnGDAclTOsUH7VxFiKVO/GRiXkmt7WHMsT4BY8qDOQH:6vhBcloVaKV+GRmwIBob
Score7/10-
Deletes itself
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of SetThreadContext
-