General
-
Target
8c9d7122b4a02d73da61b988a8030cb48549fb7fffc7c2ca17e999c3227ae5b3
-
Size
2.1MB
-
Sample
240407-268w9she75
-
MD5
ed4f59e905c886f6efb5701b085436d8
-
SHA1
2f2f3b0974bf18b586785690ce335000e09afc5e
-
SHA256
8c9d7122b4a02d73da61b988a8030cb48549fb7fffc7c2ca17e999c3227ae5b3
-
SHA512
ee7c59f349cdc45b1c33761d4b62ac6b6c570bd8df0af9189c85baaf38920fd3c28d5238a9dfa9ddb1873bc3f27ea3af319fd2436ce9ea760249ac821164c013
-
SSDEEP
49152:AiMbZG5sJHpAph0krdF9vkb5GJwhI+rypYA:SV0guh0krH988W1FA
Behavioral task
behavioral1
Sample
8c9d7122b4a02d73da61b988a8030cb48549fb7fffc7c2ca17e999c3227ae5b3.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
8c9d7122b4a02d73da61b988a8030cb48549fb7fffc7c2ca17e999c3227ae5b3.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
8c9d7122b4a02d73da61b988a8030cb48549fb7fffc7c2ca17e999c3227ae5b3
-
Size
2.1MB
-
MD5
ed4f59e905c886f6efb5701b085436d8
-
SHA1
2f2f3b0974bf18b586785690ce335000e09afc5e
-
SHA256
8c9d7122b4a02d73da61b988a8030cb48549fb7fffc7c2ca17e999c3227ae5b3
-
SHA512
ee7c59f349cdc45b1c33761d4b62ac6b6c570bd8df0af9189c85baaf38920fd3c28d5238a9dfa9ddb1873bc3f27ea3af319fd2436ce9ea760249ac821164c013
-
SSDEEP
49152:AiMbZG5sJHpAph0krdF9vkb5GJwhI+rypYA:SV0guh0krH988W1FA
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-