General
-
Target
7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941
-
Size
89KB
-
Sample
240603-21v38adb64
-
MD5
4fda8699cba18d670f834f4744605d0f
-
SHA1
502f8ec0a0d9cb1494a890ef3b1f5034873ec729
-
SHA256
7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941
-
SHA512
b3aa990018e94c8d40dcb927221a2ee190775db7f4b761bf8332bdf0876688f484e718e9ab6838de98829ab76b9ed434bf270e4d18224e0e867e267586983919
-
SSDEEP
1536:71sMveb4lR0daHy9v7Zc86y9U4AFRfBWAEnL:BDeb4T0daHy9DZc86yGUtnL
Static task
static1
Behavioral task
behavioral1
Sample
7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941
-
Size
89KB
-
MD5
4fda8699cba18d670f834f4744605d0f
-
SHA1
502f8ec0a0d9cb1494a890ef3b1f5034873ec729
-
SHA256
7553d1bda14b8d00b5df812187fdd95d68dc8deff4b2a93643fff7b3b3b9e941
-
SHA512
b3aa990018e94c8d40dcb927221a2ee190775db7f4b761bf8332bdf0876688f484e718e9ab6838de98829ab76b9ed434bf270e4d18224e0e867e267586983919
-
SSDEEP
1536:71sMveb4lR0daHy9v7Zc86y9U4AFRfBWAEnL:BDeb4T0daHy9DZc86yGUtnL
Score10/10-
Modifies WinLogon for persistence
-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Detects executables packed with ASPack
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-