General
-
Target
671918b0dc1885b5b37cd776a40638b9.exe
-
Size
7.8MB
-
Sample
230825-cqpq1sgf35
-
MD5
671918b0dc1885b5b37cd776a40638b9
-
SHA1
4c106a9795635f7fd479aae4acdf37c93e2f422f
-
SHA256
02216d2a51d07a55660dbd40857d118281c281a974935f00b15078e5207c2d4b
-
SHA512
63b4de31a0276fc674fb3d79170800bf22e0ad361cde30f42cce49f4d9d30de85d8d30f82aa70145f5564775f47c99ca89ab64b37a673a25ceae9f7d515a337e
-
SSDEEP
196608:Q5sT5so57UnkJbSK1sWb2dSIaZUGsJNRfCi8bBJ5/RdoHtomK/VT:v57Unk8K1w6z3/3JdT
Malware Config
Targets
-
-
Target
671918b0dc1885b5b37cd776a40638b9.exe
-
Size
7.8MB
-
MD5
671918b0dc1885b5b37cd776a40638b9
-
SHA1
4c106a9795635f7fd479aae4acdf37c93e2f422f
-
SHA256
02216d2a51d07a55660dbd40857d118281c281a974935f00b15078e5207c2d4b
-
SHA512
63b4de31a0276fc674fb3d79170800bf22e0ad361cde30f42cce49f4d9d30de85d8d30f82aa70145f5564775f47c99ca89ab64b37a673a25ceae9f7d515a337e
-
SSDEEP
196608:Q5sT5so57UnkJbSK1sWb2dSIaZUGsJNRfCi8bBJ5/RdoHtomK/VT:v57Unk8K1w6z3/3JdT
Score8/10-
Modifies Installed Components in the registry
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Suspicious use of SetThreadContext
-