General
-
Target
5fa74735f3c4707a31d6d5f64c8549ac1eaf88f3c85e7701dc397ddc03e8c96e
-
Size
1.6MB
-
Sample
240407-1fc68sfd27
-
MD5
d63ba2ce0c96c6558539508d83564f36
-
SHA1
2f79193f71e02a130f598dd6945d1fea8272e022
-
SHA256
5fa74735f3c4707a31d6d5f64c8549ac1eaf88f3c85e7701dc397ddc03e8c96e
-
SHA512
785490c3c628321c739d91335c5339c15f2bed4bed1c93062b9863e1caea69901dc53c9893303227295d5e3b51235e97eae82d1484c35c0fb522f3f4f11aa543
-
SSDEEP
24576:VUEFedcbS3hkGnuCTYlOT15wyeFgvTF0eMAbaoRiLATdqgL:SdcmmW38sj/cgrVMALQA3
Behavioral task
behavioral1
Sample
5fa74735f3c4707a31d6d5f64c8549ac1eaf88f3c85e7701dc397ddc03e8c96e.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
5fa74735f3c4707a31d6d5f64c8549ac1eaf88f3c85e7701dc397ddc03e8c96e.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
5fa74735f3c4707a31d6d5f64c8549ac1eaf88f3c85e7701dc397ddc03e8c96e
-
Size
1.6MB
-
MD5
d63ba2ce0c96c6558539508d83564f36
-
SHA1
2f79193f71e02a130f598dd6945d1fea8272e022
-
SHA256
5fa74735f3c4707a31d6d5f64c8549ac1eaf88f3c85e7701dc397ddc03e8c96e
-
SHA512
785490c3c628321c739d91335c5339c15f2bed4bed1c93062b9863e1caea69901dc53c9893303227295d5e3b51235e97eae82d1484c35c0fb522f3f4f11aa543
-
SSDEEP
24576:VUEFedcbS3hkGnuCTYlOT15wyeFgvTF0eMAbaoRiLATdqgL:SdcmmW38sj/cgrVMALQA3
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-