General
-
Target
FurMark_v1.26_Chs.exe
-
Size
11.8MB
-
Sample
230514-kp29qabc74
-
MD5
fb404cf31b92a6d99a03842d8f948e7d
-
SHA1
270f4ef6152a157a5a58bbd10431cfe5c01608e8
-
SHA256
3c1c44c6cd0965cb79bf81d588f92b41dc9da0f521e3babd5b239ee619f1f678
-
SHA512
8a67d233abab7edfd102a0ffb0d5cca2a38d7a62b5f275d2d0f4b0ed981d312a9255673a5e7a4f8a416f68a81f35c720e411e11f9323fb9c06f6478582ed67a9
-
SSDEEP
196608:9LwPu7pU71jjDcznCxF113QUEq6iFpDIiPdbxZ4VLIZ+nC9CpPgaA1tWEP7Uzx6A:NwUU71zcznm1gl8F1LPrsIjWw7UN6H4J
Behavioral task
behavioral1
Sample
FurMark_v1.26_Chs.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
FurMark_v1.26_Chs.exe
Resource
win10v2004-20230221-en
Malware Config
Targets
-
-
Target
FurMark_v1.26_Chs.exe
-
Size
11.8MB
-
MD5
fb404cf31b92a6d99a03842d8f948e7d
-
SHA1
270f4ef6152a157a5a58bbd10431cfe5c01608e8
-
SHA256
3c1c44c6cd0965cb79bf81d588f92b41dc9da0f521e3babd5b239ee619f1f678
-
SHA512
8a67d233abab7edfd102a0ffb0d5cca2a38d7a62b5f275d2d0f4b0ed981d312a9255673a5e7a4f8a416f68a81f35c720e411e11f9323fb9c06f6478582ed67a9
-
SSDEEP
196608:9LwPu7pU71jjDcznCxF113QUEq6iFpDIiPdbxZ4VLIZ+nC9CpPgaA1tWEP7Uzx6A:NwUU71zcznm1gl8F1LPrsIjWw7UN6H4J
Score7/10-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-