General
-
Target
WinToHDD.exe
-
Size
4.2MB
-
Sample
240522-bhncjsff8z
-
MD5
014aa780de21687de83ddbe0f55ab183
-
SHA1
5bec95741a8e45d59c413e27200c92b8fdb6b2e2
-
SHA256
9deb4058accce9ad4ff96ca98b6aec86a132f18bbeee769892c30d0eaf99aac0
-
SHA512
efc081be99a6b4c84af2b12baff2160ae38923161059e1487141c096af7d856be248bb5901554eefd1db1a26200d129de90b62d50f58de031b2a03e3eda9e802
-
SSDEEP
98304:U0aEiQ9wb2ZEPzO9Sv/9Ntx3EaXm11r7hvc1+d4tuFUtWc/:U0ayAUumjri1S4tTH
Static task
static1
Behavioral task
behavioral1
Sample
WinToHDD.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
WinToHDD.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
WinToHDD.exe
-
Size
4.2MB
-
MD5
014aa780de21687de83ddbe0f55ab183
-
SHA1
5bec95741a8e45d59c413e27200c92b8fdb6b2e2
-
SHA256
9deb4058accce9ad4ff96ca98b6aec86a132f18bbeee769892c30d0eaf99aac0
-
SHA512
efc081be99a6b4c84af2b12baff2160ae38923161059e1487141c096af7d856be248bb5901554eefd1db1a26200d129de90b62d50f58de031b2a03e3eda9e802
-
SSDEEP
98304:U0aEiQ9wb2ZEPzO9Sv/9Ntx3EaXm11r7hvc1+d4tuFUtWc/:U0ayAUumjri1S4tTH
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Registers COM server for autorun
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-