General
-
Target
95a21d6f6b02bf52792e77cf0a0a72d8
-
Size
672KB
-
Sample
231222-p9l6fsdaeq
-
MD5
95a21d6f6b02bf52792e77cf0a0a72d8
-
SHA1
837f3e3924aa039e203424e3866e5d9eecd95290
-
SHA256
ea1d1269f0cf7437cfa87ecfe2f875d0b9a64ef5216d2d0459e75781384f3b4f
-
SHA512
c3a0964c57e8133d7a6d01fbdbc9a6c923f5d04fd198cccd8529006eefa37161d5786c0c5db02351fac0230b472d7dfc22e01bfb7618cbc9953617e5e2426bd3
-
SSDEEP
12288:9eBNUbTVO86UwWVO0jhK5v7LTD8Ba6IS6PdI6DG:9JIUwWM0jhkjLTDCzoIV
Malware Config
Targets
-
-
Target
95a21d6f6b02bf52792e77cf0a0a72d8
-
Size
672KB
-
MD5
95a21d6f6b02bf52792e77cf0a0a72d8
-
SHA1
837f3e3924aa039e203424e3866e5d9eecd95290
-
SHA256
ea1d1269f0cf7437cfa87ecfe2f875d0b9a64ef5216d2d0459e75781384f3b4f
-
SHA512
c3a0964c57e8133d7a6d01fbdbc9a6c923f5d04fd198cccd8529006eefa37161d5786c0c5db02351fac0230b472d7dfc22e01bfb7618cbc9953617e5e2426bd3
-
SSDEEP
12288:9eBNUbTVO86UwWVO0jhK5v7LTD8Ba6IS6PdI6DG:9JIUwWM0jhkjLTDCzoIV
Score8/10-
Disables taskbar notifications via registry modification
-
Executes dropped EXE
-
Loads dropped DLL
-
Windows security modification
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-