General
-
Target
26ae6d2225770d603171ec9d88e149926653b8f94c431a867ad01de44a0eeea0
-
Size
199KB
-
Sample
240403-x9a27aah54
-
MD5
15e1319675650d2d9f213df34313558a
-
SHA1
f410516115dcd17ed0b731388c7b5f510722bf0a
-
SHA256
26ae6d2225770d603171ec9d88e149926653b8f94c431a867ad01de44a0eeea0
-
SHA512
1474167da928fe046c437b756aca2cf2c084a75a66a32f238351f05414795b8217538d5c7f087f0ed68d9b0fd2a5e6f48a38efd5f9cc6413823986d24f374db7
-
SSDEEP
6144:bPDLCL4Io5R4nM/4lxdrOzcnwnvJ1Y1mO8GYfy4hie:bPKL8q7dbnwnvJnOdyQe
Behavioral task
behavioral1
Sample
26ae6d2225770d603171ec9d88e149926653b8f94c431a867ad01de44a0eeea0.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
26ae6d2225770d603171ec9d88e149926653b8f94c431a867ad01de44a0eeea0.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
26ae6d2225770d603171ec9d88e149926653b8f94c431a867ad01de44a0eeea0
-
Size
199KB
-
MD5
15e1319675650d2d9f213df34313558a
-
SHA1
f410516115dcd17ed0b731388c7b5f510722bf0a
-
SHA256
26ae6d2225770d603171ec9d88e149926653b8f94c431a867ad01de44a0eeea0
-
SHA512
1474167da928fe046c437b756aca2cf2c084a75a66a32f238351f05414795b8217538d5c7f087f0ed68d9b0fd2a5e6f48a38efd5f9cc6413823986d24f374db7
-
SSDEEP
6144:bPDLCL4Io5R4nM/4lxdrOzcnwnvJ1Y1mO8GYfy4hie:bPKL8q7dbnwnvJnOdyQe
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-