General
-
Target
937b871751c9959cf7b73aa3a6072968df4ea55bc8ee96128584cdacf80cf7f7
-
Size
110KB
-
Sample
230129-2hw8kaha4z
-
MD5
8056504f65bb9ee9da7c3a7ef226bd41
-
SHA1
f4463c134204076fa044df2972499f5792dfbba4
-
SHA256
937b871751c9959cf7b73aa3a6072968df4ea55bc8ee96128584cdacf80cf7f7
-
SHA512
777b8ba0fb7664dbe3530f917703cf819a2c1da082ed9c159752a3810212a939fbbb77a2e866b1723568d1b9eb4cbcf0568af01eeed19a45e5e69b4af9f25eb4
-
SSDEEP
1536:H1r3q9vCGnAN4EmjQ8ayHACirV1PBSNLSl2xisFtVlcnLSHC4VmxfJ:oKGAcjQ8aEXiBRBSNmsisFteSi0k
Static task
static1
Behavioral task
behavioral1
Sample
937b871751c9959cf7b73aa3a6072968df4ea55bc8ee96128584cdacf80cf7f7.exe
Resource
win7-20221111-en
Malware Config
Targets
-
-
Target
937b871751c9959cf7b73aa3a6072968df4ea55bc8ee96128584cdacf80cf7f7
-
Size
110KB
-
MD5
8056504f65bb9ee9da7c3a7ef226bd41
-
SHA1
f4463c134204076fa044df2972499f5792dfbba4
-
SHA256
937b871751c9959cf7b73aa3a6072968df4ea55bc8ee96128584cdacf80cf7f7
-
SHA512
777b8ba0fb7664dbe3530f917703cf819a2c1da082ed9c159752a3810212a939fbbb77a2e866b1723568d1b9eb4cbcf0568af01eeed19a45e5e69b4af9f25eb4
-
SSDEEP
1536:H1r3q9vCGnAN4EmjQ8ayHACirV1PBSNLSl2xisFtVlcnLSHC4VmxfJ:oKGAcjQ8aEXiBRBSNmsisFteSi0k
-
Possible privilege escalation attempt
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Modifies file permissions
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-