General
-
Target
238e286a3bca4af0e1294a4cb13d17de6b922df4570a98a99ce550c88596f4cd
-
Size
393KB
-
Sample
221203-kmbc8acd3s
-
MD5
53fb4a3b26d43ad7192f374452eacb7d
-
SHA1
031853042d0b205117be47c6d92cc580c6b56ce7
-
SHA256
238e286a3bca4af0e1294a4cb13d17de6b922df4570a98a99ce550c88596f4cd
-
SHA512
f20683d2395a8c06bf1fcf69eaa8016f5d3a878b04128181526c5a6da7d45fb52ea898d2aecf4daa0c5fa56bf69c5515b8ee4f3c12744fbd78f9510d3579a458
-
SSDEEP
6144:ZBgh/58KGip9lmh0UwwDdxtPw13OyhFR8uHC+4VL6eHn3ttqPgJog:ZBMmKGnhDT+JlCLRueH3rz
Malware Config
Targets
-
-
Target
238e286a3bca4af0e1294a4cb13d17de6b922df4570a98a99ce550c88596f4cd
-
Size
393KB
-
MD5
53fb4a3b26d43ad7192f374452eacb7d
-
SHA1
031853042d0b205117be47c6d92cc580c6b56ce7
-
SHA256
238e286a3bca4af0e1294a4cb13d17de6b922df4570a98a99ce550c88596f4cd
-
SHA512
f20683d2395a8c06bf1fcf69eaa8016f5d3a878b04128181526c5a6da7d45fb52ea898d2aecf4daa0c5fa56bf69c5515b8ee4f3c12744fbd78f9510d3579a458
-
SSDEEP
6144:ZBgh/58KGip9lmh0UwwDdxtPw13OyhFR8uHC+4VL6eHn3ttqPgJog:ZBMmKGnhDT+JlCLRueH3rz
Score8/10-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
AutoIT Executable
AutoIT scripts compiled to PE executables.
-
Suspicious use of SetThreadContext
-