General
-
Target
driver_booster_setup.exe
-
Size
24.5MB
-
Sample
230609-t8besacf69
-
MD5
aec6ba15c854c44db853bf88ab234acd
-
SHA1
68c76c0d21fb10e11626bd39b898e082c578c073
-
SHA256
db2bc4d3a566e7e0b90c71f6d607ce32ad7781c39caa3e754e68345bc6ca7f8d
-
SHA512
1994ae531f49e13e77d90516318aec8799619ff16433a8087162161bc59e09e24ec815ea693a1027e7d47450bae75e394ec35f8573eb34284d1c8a9e62eefdc5
-
SSDEEP
786432:GRp7y/SQqAzSqx0pjrE4Acbs7IWFPZJ4Brb/8w:ABy/xn07luIWAP
Static task
static1
Behavioral task
behavioral1
Sample
driver_booster_setup.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
driver_booster_setup.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
driver_booster_setup.exe
-
Size
24.5MB
-
MD5
aec6ba15c854c44db853bf88ab234acd
-
SHA1
68c76c0d21fb10e11626bd39b898e082c578c073
-
SHA256
db2bc4d3a566e7e0b90c71f6d607ce32ad7781c39caa3e754e68345bc6ca7f8d
-
SHA512
1994ae531f49e13e77d90516318aec8799619ff16433a8087162161bc59e09e24ec815ea693a1027e7d47450bae75e394ec35f8573eb34284d1c8a9e62eefdc5
-
SSDEEP
786432:GRp7y/SQqAzSqx0pjrE4Acbs7IWFPZJ4Brb/8w:ABy/xn07luIWAP
Score8/10-
Creates new service(s)
-
Downloads MZ/PE file
-
Stops running service(s)
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks for any installed AV software in registry
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-