General
-
Target
964d983f32f281bc298ba92043a5bfc0N.exe
-
Size
5.6MB
-
Sample
240727-fwmemasclh
-
MD5
964d983f32f281bc298ba92043a5bfc0
-
SHA1
0055bbf489df0d93529d8bdf4f3e12660311efe1
-
SHA256
fac5fb866b160f70287c0fea21d4a6c2c56991cd09473205009ad47605788405
-
SHA512
5f850ec67ea1e456f61ce62480152b326f20932ccc17184d07949cd46ad57f1bb6ce6572e986baef665daac915360cda03536e1153b20017582865aa77eb703e
-
SSDEEP
98304:OL3s8SIj17rsX+uSvH6m9XlVsCYJVUpP+JLlpced1vsBgm53zukozKw:m88j7rcUfvViJV/xp9d145D3omw
Static task
static1
Behavioral task
behavioral1
Sample
964d983f32f281bc298ba92043a5bfc0N.exe
Resource
win7-20240708-en
Malware Config
Targets
-
-
Target
964d983f32f281bc298ba92043a5bfc0N.exe
-
Size
5.6MB
-
MD5
964d983f32f281bc298ba92043a5bfc0
-
SHA1
0055bbf489df0d93529d8bdf4f3e12660311efe1
-
SHA256
fac5fb866b160f70287c0fea21d4a6c2c56991cd09473205009ad47605788405
-
SHA512
5f850ec67ea1e456f61ce62480152b326f20932ccc17184d07949cd46ad57f1bb6ce6572e986baef665daac915360cda03536e1153b20017582865aa77eb703e
-
SSDEEP
98304:OL3s8SIj17rsX+uSvH6m9XlVsCYJVUpP+JLlpced1vsBgm53zukozKw:m88j7rcUfvViJV/xp9d145D3omw
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-