General
-
Target
4221625fab292ba965c838b632dc2a40N.exe
-
Size
4.5MB
-
Sample
240816-gqvdqaygnd
-
MD5
4221625fab292ba965c838b632dc2a40
-
SHA1
0199a24496ce7578d05454487d0d51325b2b5fe0
-
SHA256
3cee9ffd53d6dceab964c8d3edfe0c63cfff4395e2d97b2a417c01e335a68f84
-
SHA512
f68009c53c14f8bdfb9b1c6459ce158a6c3d781796f09ad542464d54714a68548d8cce1e3e20ac59aa69a79025d4d78d6ca6c3f139a3cc601af194ad98ace0f4
-
SSDEEP
98304:+Zj99S6rfEhwDfiWamYr3wptuS0xduqIrBmgIyEjIviWljCvW:yjLSaEhwDfiWamBtc7uqCBmgMjcbjoW
Static task
static1
Behavioral task
behavioral1
Sample
4221625fab292ba965c838b632dc2a40N.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
4221625fab292ba965c838b632dc2a40N.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
4221625fab292ba965c838b632dc2a40N.exe
-
Size
4.5MB
-
MD5
4221625fab292ba965c838b632dc2a40
-
SHA1
0199a24496ce7578d05454487d0d51325b2b5fe0
-
SHA256
3cee9ffd53d6dceab964c8d3edfe0c63cfff4395e2d97b2a417c01e335a68f84
-
SHA512
f68009c53c14f8bdfb9b1c6459ce158a6c3d781796f09ad542464d54714a68548d8cce1e3e20ac59aa69a79025d4d78d6ca6c3f139a3cc601af194ad98ace0f4
-
SSDEEP
98304:+Zj99S6rfEhwDfiWamYr3wptuS0xduqIrBmgIyEjIviWljCvW:yjLSaEhwDfiWamBtc7uqCBmgMjcbjoW
-
Detects Floxif payload
-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-