General
-
Target
ec3bd17f29f769c959b42a4c73ba416436f7572a8084bb6c9986216d1f7b7091
-
Size
42KB
-
Sample
221129-hnvr5saa4s
-
MD5
b1cbe713bc1321244b0a61d0167fee0d
-
SHA1
2e89ee4b05d63aaddb3bf346ab8dca435d2fe682
-
SHA256
ec3bd17f29f769c959b42a4c73ba416436f7572a8084bb6c9986216d1f7b7091
-
SHA512
cfb4642762f421c35d8748c30f93e0eb82a0176e1cdaf508a69c5db9efbebbb1f5817edaa70467a4b7d1793c6802fcadc32d2c7346a07432bf7217773fc2f2b4
-
SSDEEP
768:gSz0/XBwayCUOwV3TNZHdrPeqzEWvpbPwSMX6+w6pqZxLdeVgol9D88888888887:BzOCay4wV339rPjzbpLwRJ9pSdoIe
Behavioral task
behavioral1
Sample
ec3bd17f29f769c959b42a4c73ba416436f7572a8084bb6c9986216d1f7b7091.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ec3bd17f29f769c959b42a4c73ba416436f7572a8084bb6c9986216d1f7b7091.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
ec3bd17f29f769c959b42a4c73ba416436f7572a8084bb6c9986216d1f7b7091
-
Size
42KB
-
MD5
b1cbe713bc1321244b0a61d0167fee0d
-
SHA1
2e89ee4b05d63aaddb3bf346ab8dca435d2fe682
-
SHA256
ec3bd17f29f769c959b42a4c73ba416436f7572a8084bb6c9986216d1f7b7091
-
SHA512
cfb4642762f421c35d8748c30f93e0eb82a0176e1cdaf508a69c5db9efbebbb1f5817edaa70467a4b7d1793c6802fcadc32d2c7346a07432bf7217773fc2f2b4
-
SSDEEP
768:gSz0/XBwayCUOwV3TNZHdrPeqzEWvpbPwSMX6+w6pqZxLdeVgol9D88888888887:BzOCay4wV339rPjzbpLwRJ9pSdoIe
Score10/10-
Modifies WinLogon for persistence
-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-