General
-
Target
e88db31912a13e06e273a5c6c853e5e6e3cecbb7f753d0a451359240ab66f02d
-
Size
376KB
-
Sample
221203-dt6z5sae57
-
MD5
3f78436d7323388e94826027a5573d80
-
SHA1
f6a85e5d20603b7e076c7f1d5eee022e74e920cd
-
SHA256
e88db31912a13e06e273a5c6c853e5e6e3cecbb7f753d0a451359240ab66f02d
-
SHA512
089b620398338e46c1f72c7a9635d08b1677aec6ab4051607ecb9095f26bb53d19db126cd1fc0c6aee98086e44f2d737cd022da9bf1ebcd139e52676aac29aa0
-
SSDEEP
6144:nUDQ4ueBIpaBHxrP3jU4GmKEzt+GXEVeBHgZzcmbTqC35zbRQu5Nt4vZ1t6q4zEC:sQ4VBIGHxbjMmKg+eEVAQ5n3zp5L4vZA
Malware Config
Targets
-
-
Target
e88db31912a13e06e273a5c6c853e5e6e3cecbb7f753d0a451359240ab66f02d
-
Size
376KB
-
MD5
3f78436d7323388e94826027a5573d80
-
SHA1
f6a85e5d20603b7e076c7f1d5eee022e74e920cd
-
SHA256
e88db31912a13e06e273a5c6c853e5e6e3cecbb7f753d0a451359240ab66f02d
-
SHA512
089b620398338e46c1f72c7a9635d08b1677aec6ab4051607ecb9095f26bb53d19db126cd1fc0c6aee98086e44f2d737cd022da9bf1ebcd139e52676aac29aa0
-
SSDEEP
6144:nUDQ4ueBIpaBHxrP3jU4GmKEzt+GXEVeBHgZzcmbTqC35zbRQu5Nt4vZ1t6q4zEC:sQ4VBIGHxbjMmKg+eEVAQ5n3zp5L4vZA
Score8/10-
Adds policy Run key to start application
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Deletes itself
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-
Drops file in System32 directory
-