General
-
Target
c3b660995047af9455852d694f67038c1b2e099ed30381eeb233fbd0e3187e2d
-
Size
1.4MB
-
Sample
231011-2j4n2ahb4s
-
MD5
8502ec328b43d9a24fe8930fd7077354
-
SHA1
2b6cab39c36dcebcde1b1dd8aad2f2edd15a4d3a
-
SHA256
c3b660995047af9455852d694f67038c1b2e099ed30381eeb233fbd0e3187e2d
-
SHA512
8ca7bc8f7219cea90e3ca67319dfe5512a91d9de17ca7d9084e22801ea71cc605be7339e106185c8524600559e5406379e9094c856eea7f1c383d711dc222182
-
SSDEEP
24576:nbU4c4c1mPDsfb5kMRjrky7BBcJ4yM+Q0OFxpfClsogJKrYEaKworEH7gJ:AR4ck+b5kMJB7BBcJE+Q0OFvfClxg0YU
Malware Config
Targets
-
-
Target
c3b660995047af9455852d694f67038c1b2e099ed30381eeb233fbd0e3187e2d
-
Size
1.4MB
-
MD5
8502ec328b43d9a24fe8930fd7077354
-
SHA1
2b6cab39c36dcebcde1b1dd8aad2f2edd15a4d3a
-
SHA256
c3b660995047af9455852d694f67038c1b2e099ed30381eeb233fbd0e3187e2d
-
SHA512
8ca7bc8f7219cea90e3ca67319dfe5512a91d9de17ca7d9084e22801ea71cc605be7339e106185c8524600559e5406379e9094c856eea7f1c383d711dc222182
-
SSDEEP
24576:nbU4c4c1mPDsfb5kMRjrky7BBcJ4yM+Q0OFxpfClsogJKrYEaKworEH7gJ:AR4ck+b5kMJB7BBcJE+Q0OFvfClxg0YU
Score8/10-
Downloads MZ/PE file
-
Sets file execution options in registry
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Registers COM server for autorun
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-