General
-
Target
msodbcsql_3be4cf889ad6c6334b15ac136d57321cbca28026.exe
-
Size
4.1MB
-
Sample
240410-spzslacf38
-
MD5
ac85224e7442d03afab8e7e468d12b12
-
SHA1
3be4cf889ad6c6334b15ac136d57321cbca28026
-
SHA256
139bf4bc1e0b8b3832e82f23cef43ab0b66530caa0963e45950175df459b1458
-
SHA512
607405c83eeac87239e9906092732a808deb16d4620ac46708f0b0efe15e097a66869e97ac6d78bcbe0f48a9ec30cfaf4a44c74ab8c35e95dd75e09ba39140d7
-
SSDEEP
98304:tJxJzqAgBeiY7reD2RZDwEZbRmckDZVRss+C26lbZ8nHezBbH8YD:tJxwAn3e6RZhbUcif26sn+9bRD
Malware Config
Targets
-
-
Target
msodbcsql_3be4cf889ad6c6334b15ac136d57321cbca28026.exe
-
Size
4.1MB
-
MD5
ac85224e7442d03afab8e7e468d12b12
-
SHA1
3be4cf889ad6c6334b15ac136d57321cbca28026
-
SHA256
139bf4bc1e0b8b3832e82f23cef43ab0b66530caa0963e45950175df459b1458
-
SHA512
607405c83eeac87239e9906092732a808deb16d4620ac46708f0b0efe15e097a66869e97ac6d78bcbe0f48a9ec30cfaf4a44c74ab8c35e95dd75e09ba39140d7
-
SSDEEP
98304:tJxJzqAgBeiY7reD2RZDwEZbRmckDZVRss+C26lbZ8nHezBbH8YD:tJxwAn3e6RZhbUcif26sn+9bRD
Score6/10-
Adds Run key to start application
-
Blocklisted process makes network request
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-