General
-
Target
d631fa040e1f6c24f738b7be27bb2d00285471591337c1de83bb576d0a5650d6
-
Size
5.7MB
-
Sample
240526-d2wjdadc5x
-
MD5
25171eec77451227587b6baee643ea5b
-
SHA1
b8ce6e07d541e739be4207b59de190ad96e47af6
-
SHA256
d631fa040e1f6c24f738b7be27bb2d00285471591337c1de83bb576d0a5650d6
-
SHA512
37ac3bd18c16097ca80ab3473965f8ea3bff776aff73a27c6ccf54a0849576d0f76b0a2c40fd4aa2ce626f9f46875aa7875fa606e4672c8213b4a4f930df9a56
-
SSDEEP
98304:tO8LoyTlH5QT7heu73YAJeozorMVs0MWRynkIq6j2Ih9l4VfIDHbrmxLPruKhlTY:NbmT7susAG2s02nk+jByQ7SBSGCz3Z
Static task
static1
Behavioral task
behavioral1
Sample
d631fa040e1f6c24f738b7be27bb2d00285471591337c1de83bb576d0a5650d6.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d631fa040e1f6c24f738b7be27bb2d00285471591337c1de83bb576d0a5650d6.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
d631fa040e1f6c24f738b7be27bb2d00285471591337c1de83bb576d0a5650d6
-
Size
5.7MB
-
MD5
25171eec77451227587b6baee643ea5b
-
SHA1
b8ce6e07d541e739be4207b59de190ad96e47af6
-
SHA256
d631fa040e1f6c24f738b7be27bb2d00285471591337c1de83bb576d0a5650d6
-
SHA512
37ac3bd18c16097ca80ab3473965f8ea3bff776aff73a27c6ccf54a0849576d0f76b0a2c40fd4aa2ce626f9f46875aa7875fa606e4672c8213b4a4f930df9a56
-
SSDEEP
98304:tO8LoyTlH5QT7heu73YAJeozorMVs0MWRynkIq6j2Ih9l4VfIDHbrmxLPruKhlTY:NbmT7susAG2s02nk+jByQ7SBSGCz3Z
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-