Analysis
-
max time kernel
143s -
max time network
148s -
platform
windows10-2004_x64 -
resource
win10v2004-20230703-en -
resource tags
arch:x64arch:x86image:win10v2004-20230703-enlocale:en-usos:windows10-2004-x64system -
submitted
07/08/2023, 07:30
Static task
static1
Behavioral task
behavioral1
Sample
528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe
Resource
win7-20230712-en
Behavioral task
behavioral2
Sample
528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe
Resource
win10v2004-20230703-en
General
-
Target
528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe
-
Size
5.1MB
-
MD5
baf532f71053aefc7007eaabd58a2655
-
SHA1
ea495945a79317b0053d564abf2e13a256939974
-
SHA256
528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414
-
SHA512
a4928e072f145266f47d1f257788aad84465809cecdb2adae94c13ee08ee9254e564a339d0a9d31b5427c2813e91b9e34877c90cb9e5c614506f6d2338f28078
-
SSDEEP
6144:Vi+/g/tuMQlzVntVKJAJiJOJRJqJD5JYJUJZJCJ2JBJQJZJBJfJHsJRJGJ0JGJHX:Vv/Iu3zxtVpy+
Malware Config
Signatures
-
Enumerates connected drives 3 TTPs 1 IoCs
Attempts to read the root path of hard drives other than the default C: drive.
description ioc Process File opened (read-only) \??\F: 528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe -
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 3348 528e53b68920985b36eaf1c26487be101bc894aa000a46cc4f18f0d95951e414.exe