General
-
Target
0bc1a1d38a258906fb405e8c08aba0368ad8ed1ee04c7bcc6415ae0f8928833d
-
Size
1.9MB
-
Sample
240428-w6bc4sdh76
-
MD5
41716442fdae7489c3c83e6ee298340e
-
SHA1
ce612f4b85788c634934e359e09a35de0669b812
-
SHA256
0bc1a1d38a258906fb405e8c08aba0368ad8ed1ee04c7bcc6415ae0f8928833d
-
SHA512
ff0c3c4003f8801c350a88c98a8463e6e5925b0a44aadafd5bbe9046f929bb6497c56399a7f97b42b498e943115d932c3a8d2179ea839aa3a0b2b7a6ac4361ce
-
SSDEEP
49152:d9YbpbswXK+YZ/seEDzOpFbECcoOsMM2eQz6PiTra1XImPR:d9YyO8sZn6bvcJxeo6a3a1XIk
Behavioral task
behavioral1
Sample
0bc1a1d38a258906fb405e8c08aba0368ad8ed1ee04c7bcc6415ae0f8928833d.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0bc1a1d38a258906fb405e8c08aba0368ad8ed1ee04c7bcc6415ae0f8928833d.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
0bc1a1d38a258906fb405e8c08aba0368ad8ed1ee04c7bcc6415ae0f8928833d
-
Size
1.9MB
-
MD5
41716442fdae7489c3c83e6ee298340e
-
SHA1
ce612f4b85788c634934e359e09a35de0669b812
-
SHA256
0bc1a1d38a258906fb405e8c08aba0368ad8ed1ee04c7bcc6415ae0f8928833d
-
SHA512
ff0c3c4003f8801c350a88c98a8463e6e5925b0a44aadafd5bbe9046f929bb6497c56399a7f97b42b498e943115d932c3a8d2179ea839aa3a0b2b7a6ac4361ce
-
SSDEEP
49152:d9YbpbswXK+YZ/seEDzOpFbECcoOsMM2eQz6PiTra1XImPR:d9YyO8sZn6bvcJxeo6a3a1XIk
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-