General
-
Target
3e89dd52d1f0722bc2ceeeb7d551dab4d7b99b3a1f5b28f3de57d9609261c34e
-
Size
1.4MB
-
Sample
230616-awdvlaca83
-
MD5
96fce77c5c434623740b16f3a625cccf
-
SHA1
9be4addd3fecf1bc9c1e62b5b70b097ea00cba4e
-
SHA256
3e89dd52d1f0722bc2ceeeb7d551dab4d7b99b3a1f5b28f3de57d9609261c34e
-
SHA512
41f21784f2b9239917b178f8d5fbe6a7bce0ce082ad42d74fa3d2e57d934ba657731eb128615d8d5efc6b5dcf9b5e1922b0d1dc3b2ca2b75b37f7f552bce9be2
-
SSDEEP
24576:7c/zkbIOpOGvhbl0tJd2To5jCZg6zUCD42V+yVvdodGHP7OA7ZYiM8lQX67xE1cH:7criVdk5jCBUC0XuvdodeyAlYiTLducH
Static task
static1
Behavioral task
behavioral1
Sample
对-账-单.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
对-账-单.exe
Resource
win10v2004-20230221-en
Malware Config
Targets
-
-
Target
对-账-单.exe
-
Size
2.9MB
-
MD5
6c8b326564fa1443176397db8f55d24c
-
SHA1
6bd9d50fd50f07e77e8579023fcda7e50ed3cf4b
-
SHA256
6b59d8adcdc20b894e27975d2c351b652f8721254a34aeb3dafaf747f7c9d1ae
-
SHA512
88f57a3f59820cbea15b88ece7df2fa70b588ef1342d603d026a559a7111442413682d701c855bc9bd7a4922d1c4016181a6a7ad992e7e48d1a5a7edcc77ef87
-
SSDEEP
49152:LRwInKwV0jd+CBukNbWJZ6ZbaHcYz5aAVKiw6ZWqTG93jJ3hWpVc+:1weL0jICBPig3Yz5J/693kD
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-