General
-
Target
File_ Tower_of_Guns_v1_3c_zip ___.msi
-
Size
145.7MB
-
Sample
230603-hlnk2sfh36
-
MD5
d8d9d5a218acb598f92ab9685d1c5344
-
SHA1
c94de4f5f9f35d26a19534e766255e947bce2f0d
-
SHA256
1cf42260b929a471ee2f15c2a949c9192a76324f832dd71308114bd8f23a43d5
-
SHA512
21948b3915440ef3eeee548baf2b19557826580bb92fe56413e1726fb10b3dbc23e77e35440a01d3159e5c290b8e004ebb0d4c411446bb975ec798e7b3e89d38
-
SSDEEP
3145728:FkFpQJ/dwFcJTTuWQvCH5lX/zqb4ubILxAHUCMS/pKkWNT:FMpQJwcFKylvzsYxopKkW
Malware Config
Targets
-
-
Target
File_ Tower_of_Guns_v1_3c_zip ___.msi
-
Size
145.7MB
-
MD5
d8d9d5a218acb598f92ab9685d1c5344
-
SHA1
c94de4f5f9f35d26a19534e766255e947bce2f0d
-
SHA256
1cf42260b929a471ee2f15c2a949c9192a76324f832dd71308114bd8f23a43d5
-
SHA512
21948b3915440ef3eeee548baf2b19557826580bb92fe56413e1726fb10b3dbc23e77e35440a01d3159e5c290b8e004ebb0d4c411446bb975ec798e7b3e89d38
-
SSDEEP
3145728:FkFpQJ/dwFcJTTuWQvCH5lX/zqb4ubILxAHUCMS/pKkWNT:FMpQJwcFKylvzsYxopKkW
Score8/10-
Blocklisted process makes network request
-
Drops startup file
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-