General
-
Target
d2f50eee8786568c10f8e604ffdcd8441187a630d6eb6e79f999c35ceaf84dc5
-
Size
42KB
-
Sample
221129-hnx79sfa56
-
MD5
76fc6dd56b4f8ddc559c77036b76b937
-
SHA1
3e37d7bc9420c4fdde2d907d8d1ca1196e934bf1
-
SHA256
d2f50eee8786568c10f8e604ffdcd8441187a630d6eb6e79f999c35ceaf84dc5
-
SHA512
4a6213f0ddbaeb68a7b17516ed51d52e8434ec91102a6023396c468c4c6cd50acc8adf02e3f172bf6ae22d478bf9161bbbc0aea02ab68b9c505b5fe7bdbfeef6
-
SSDEEP
768:gSz0/XBwayCUOwV3TNZHdrPeqzEWvpbPwSMX6+w6pqZxLdeVgol9D8888888888s:BzOCay4wV339rPjzbpLwRJ9pSdoI1
Behavioral task
behavioral1
Sample
d2f50eee8786568c10f8e604ffdcd8441187a630d6eb6e79f999c35ceaf84dc5.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
d2f50eee8786568c10f8e604ffdcd8441187a630d6eb6e79f999c35ceaf84dc5.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
d2f50eee8786568c10f8e604ffdcd8441187a630d6eb6e79f999c35ceaf84dc5
-
Size
42KB
-
MD5
76fc6dd56b4f8ddc559c77036b76b937
-
SHA1
3e37d7bc9420c4fdde2d907d8d1ca1196e934bf1
-
SHA256
d2f50eee8786568c10f8e604ffdcd8441187a630d6eb6e79f999c35ceaf84dc5
-
SHA512
4a6213f0ddbaeb68a7b17516ed51d52e8434ec91102a6023396c468c4c6cd50acc8adf02e3f172bf6ae22d478bf9161bbbc0aea02ab68b9c505b5fe7bdbfeef6
-
SSDEEP
768:gSz0/XBwayCUOwV3TNZHdrPeqzEWvpbPwSMX6+w6pqZxLdeVgol9D8888888888s:BzOCay4wV339rPjzbpLwRJ9pSdoI1
Score10/10-
Modifies WinLogon for persistence
-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-