General
-
Target
MediaCreationTool_Win11_23H2.exe
-
Size
9.6MB
-
Sample
240906-dmstyatckg
-
MD5
25c9285c00ef7d41b28823a053a9a372
-
SHA1
fac6862d703a7d80418012ce1d5d7d9aecbb28b8
-
SHA256
767e70c43673063a16d76e494ffcdfa0f5a85c53344a0dc505f161cccf2f5b1b
-
SHA512
071e4c1d7f1ec87ae3ec83f266f8a69f357111e642056ada44f97d8619a22f9873cc793b0f7d6a560c1b163b64150a06182785222512f7f5ec19ea1aac461a8c
-
SSDEEP
196608:x2eDMIIKEW+sisSMo/dlv1DL6D+ZwN5uW/GVTVH9HoxCZWdz2s71:hIKRbib71DJ2NITVFoYZWdhB
Malware Config
Targets
-
-
Target
MediaCreationTool_Win11_23H2.exe
-
Size
9.6MB
-
MD5
25c9285c00ef7d41b28823a053a9a372
-
SHA1
fac6862d703a7d80418012ce1d5d7d9aecbb28b8
-
SHA256
767e70c43673063a16d76e494ffcdfa0f5a85c53344a0dc505f161cccf2f5b1b
-
SHA512
071e4c1d7f1ec87ae3ec83f266f8a69f357111e642056ada44f97d8619a22f9873cc793b0f7d6a560c1b163b64150a06182785222512f7f5ec19ea1aac461a8c
-
SSDEEP
196608:x2eDMIIKEW+sisSMo/dlv1DL6D+ZwN5uW/GVTVH9HoxCZWdz2s71:hIKRbib71DJ2NITVFoYZWdhB
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-