General
-
Target
091ca27bca23c9221911b2b6e44574173a4df0a0e00f5e59e15686be8e3b38e5
-
Size
234KB
-
Sample
240403-w2h76agh5w
-
MD5
36ea4f0e5583c44848ba59ef59350806
-
SHA1
c9f18716291ca8cd2772e91eacd98ce7ca8abe6b
-
SHA256
091ca27bca23c9221911b2b6e44574173a4df0a0e00f5e59e15686be8e3b38e5
-
SHA512
19a084c812985d7e9a2c20aff3d01583bbcd87b219f9dd1ef5e27f84ef770f2da6b886a605901f962ec0b1ef47078e790bc27ca9430d030766ceed2f3e3b1d52
-
SSDEEP
6144:YjluQoSPIo5R4nM/40yJN1O2X0FTGoqqPMzjgZ4P6wlUwehSfs:YEQoSpqhv3XmGDiMPgZ1bhSk
Behavioral task
behavioral1
Sample
091ca27bca23c9221911b2b6e44574173a4df0a0e00f5e59e15686be8e3b38e5.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
091ca27bca23c9221911b2b6e44574173a4df0a0e00f5e59e15686be8e3b38e5.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
091ca27bca23c9221911b2b6e44574173a4df0a0e00f5e59e15686be8e3b38e5
-
Size
234KB
-
MD5
36ea4f0e5583c44848ba59ef59350806
-
SHA1
c9f18716291ca8cd2772e91eacd98ce7ca8abe6b
-
SHA256
091ca27bca23c9221911b2b6e44574173a4df0a0e00f5e59e15686be8e3b38e5
-
SHA512
19a084c812985d7e9a2c20aff3d01583bbcd87b219f9dd1ef5e27f84ef770f2da6b886a605901f962ec0b1ef47078e790bc27ca9430d030766ceed2f3e3b1d52
-
SSDEEP
6144:YjluQoSPIo5R4nM/40yJN1O2X0FTGoqqPMzjgZ4P6wlUwehSfs:YEQoSpqhv3XmGDiMPgZ1bhSk
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-