General
-
Target
d89e8e3248b5ce5f7a5f9dbd64f3d3fadb2ac5983aba240c496a32f03cefc4cf
-
Size
915KB
-
Sample
221203-pfs2xahh58
-
MD5
198f8b51353ba6c2473297958b2f4730
-
SHA1
3a95ceefa3963668b3d6d7127cc2c6be50be1174
-
SHA256
d89e8e3248b5ce5f7a5f9dbd64f3d3fadb2ac5983aba240c496a32f03cefc4cf
-
SHA512
135ed02aaa62dc0a2be20c1859567e0e8c02181703084beaa4d14850b7b3db3b1fff1157494ae58ec3454796ba9f1095f2685915991ffffe26d4358ec1fd8681
-
SSDEEP
6144:j9JUm2y14qmQJqapPTJfk2PHnxS8VDJiNzYiAOMv:xJLmQJxJfk2fxVJuu
Malware Config
Targets
-
-
Target
d89e8e3248b5ce5f7a5f9dbd64f3d3fadb2ac5983aba240c496a32f03cefc4cf
-
Size
915KB
-
MD5
198f8b51353ba6c2473297958b2f4730
-
SHA1
3a95ceefa3963668b3d6d7127cc2c6be50be1174
-
SHA256
d89e8e3248b5ce5f7a5f9dbd64f3d3fadb2ac5983aba240c496a32f03cefc4cf
-
SHA512
135ed02aaa62dc0a2be20c1859567e0e8c02181703084beaa4d14850b7b3db3b1fff1157494ae58ec3454796ba9f1095f2685915991ffffe26d4358ec1fd8681
-
SSDEEP
6144:j9JUm2y14qmQJqapPTJfk2PHnxS8VDJiNzYiAOMv:xJLmQJxJfk2fxVJuu
Score8/10-
Adds policy Run key to start application
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Deletes itself
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Checks whether UAC is enabled
-
Drops file in System32 directory
-