General
-
Target
85a781e8e173d52df4504b21a0f8a9f212f1ec3249406e5826e92ad8ca322536
-
Size
1.6MB
-
Sample
240419-3qpzwsbd9s
-
MD5
bd94b44ec063dd0b2b0ba3f7585cc921
-
SHA1
843b7c5934b370c631639396ab0b44597720bc09
-
SHA256
85a781e8e173d52df4504b21a0f8a9f212f1ec3249406e5826e92ad8ca322536
-
SHA512
dccb722faf235fb654aaf591bc2b84bd1dfafd2bda6c83a7a01e01d485a9707aeb30ad239e6ed3a3124a8a864f460c9c93271f1d28804b8714d7a63a1159b400
-
SSDEEP
49152:5qIii1BPgWrCQzJXVeibrOSUd9S8c4LIlGi83K:001BPgWrCErUd64ZY
Static task
static1
Behavioral task
behavioral1
Sample
85a781e8e173d52df4504b21a0f8a9f212f1ec3249406e5826e92ad8ca322536.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
85a781e8e173d52df4504b21a0f8a9f212f1ec3249406e5826e92ad8ca322536.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
85a781e8e173d52df4504b21a0f8a9f212f1ec3249406e5826e92ad8ca322536
-
Size
1.6MB
-
MD5
bd94b44ec063dd0b2b0ba3f7585cc921
-
SHA1
843b7c5934b370c631639396ab0b44597720bc09
-
SHA256
85a781e8e173d52df4504b21a0f8a9f212f1ec3249406e5826e92ad8ca322536
-
SHA512
dccb722faf235fb654aaf591bc2b84bd1dfafd2bda6c83a7a01e01d485a9707aeb30ad239e6ed3a3124a8a864f460c9c93271f1d28804b8714d7a63a1159b400
-
SSDEEP
49152:5qIii1BPgWrCQzJXVeibrOSUd9S8c4LIlGi83K:001BPgWrCErUd64ZY
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-