Resubmissions
24-05-2023 02:38
230524-c4r4asad53 6General
-
Target
wps_office_inst.exe
-
Size
5.2MB
-
Sample
230524-c4r4asad53
-
MD5
7378ff57810991a9ad40afd43f990e82
-
SHA1
0aa6ccab2821f5b04cfee34e593d5d77780a2a26
-
SHA256
0921eabc66a4d48e29977c5ff24af134c32902ef1261edf7c72997f69fe368e9
-
SHA512
30168609800005f3341cbefdf8a159fe2ab1f8e086c0c4232276fb12c2ab973a96844894d3212e7e62f8a22cab2745658c2d3a0222e335169162e1d520495553
-
SSDEEP
98304:X4C9MhD0WgRTGcrafnOSqJcA2r9Guklwty0I1BYFo/xjLC:XaD0WgBfrayU9DFt7ITxC
Static task
static1
Behavioral task
behavioral1
Sample
wps_office_inst.exe
Resource
win10-20230220-es
Malware Config
Targets
-
-
Target
wps_office_inst.exe
-
Size
5.2MB
-
MD5
7378ff57810991a9ad40afd43f990e82
-
SHA1
0aa6ccab2821f5b04cfee34e593d5d77780a2a26
-
SHA256
0921eabc66a4d48e29977c5ff24af134c32902ef1261edf7c72997f69fe368e9
-
SHA512
30168609800005f3341cbefdf8a159fe2ab1f8e086c0c4232276fb12c2ab973a96844894d3212e7e62f8a22cab2745658c2d3a0222e335169162e1d520495553
-
SSDEEP
98304:X4C9MhD0WgRTGcrafnOSqJcA2r9Guklwty0I1BYFo/xjLC:XaD0WgBfrayU9DFt7ITxC
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-