General
-
Target
hwmonitor_1.54.exe
-
Size
2.7MB
-
Sample
240720-fzlmhaxgrp
-
MD5
1de115d5162409c75830e620cf188837
-
SHA1
c97849f2f696e7578be1f42022549dfc21ecee7f
-
SHA256
34ae087329b227ac126ad51d04acba49c1ba18e69575a6b825bd211085969099
-
SHA512
1ad83f75030e2cc5f9788c42d4c7d5d90927693a16e2284ccf379f2aa10211735a16412d5d59addb912c12b3315f1e21feaaccf91dd5cc514b4fecc2e2af1611
-
SSDEEP
49152:GwREDKX88EVGkBhkWgwraLMwiLfpsz1tnGdH7ZQ1P98Vwzh9AF39:GwREWs8qhgwraLDmO1lQbG98eH239
Malware Config
Targets
-
-
Target
hwmonitor_1.54.exe
-
Size
2.7MB
-
MD5
1de115d5162409c75830e620cf188837
-
SHA1
c97849f2f696e7578be1f42022549dfc21ecee7f
-
SHA256
34ae087329b227ac126ad51d04acba49c1ba18e69575a6b825bd211085969099
-
SHA512
1ad83f75030e2cc5f9788c42d4c7d5d90927693a16e2284ccf379f2aa10211735a16412d5d59addb912c12b3315f1e21feaaccf91dd5cc514b4fecc2e2af1611
-
SSDEEP
49152:GwREDKX88EVGkBhkWgwraLMwiLfpsz1tnGdH7ZQ1P98Vwzh9AF39:GwREWs8qhgwraLDmO1lQbG98eH239
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-