Overview

overview

7

Static

static

3

instspeedfan452.exe

windows11-21h2-x64

7

$SYSDIR/giveio.sys

windows11-21h2-x64

1

$SYSDIR/speedfan.sys

windows11-21h2-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    instspeedfan452.exe

  • Size

    2.9MB

  • Sample

    241102-g7dgjaykdx

  • MD5

    9b62520616b647979ad053dffa80311c

  • SHA1

    babeb8bdd47d51e5bb7f66b9197aa0a1b9f3a2aa

  • SHA256

    e2ccb3c0d23f0d04ee8057f5ce3861eea952fb20694c1656c9805b1d4cd922ff

  • SHA512

    edc1981d7a4f191333c43bb7f760f5c58191599965aa1e53ba60777302ba5499b301f43189ecaad045bd22f8bed43205cbb0a0ddb9b68da1389fead8d946971d

  • SSDEEP

    49152:pJAZvThICXI+X/w5zcnTdSljPWHb59XUmisH5VdEPF63gO8FsAA:pJAZvThIqXqzYTYLWnisP2PF63gxtA

Score
7/10
discovery

Malware Config

Targets

    • Target

      instspeedfan452.exe

    • Size

      2.9MB

    • MD5

      9b62520616b647979ad053dffa80311c

    • SHA1

      babeb8bdd47d51e5bb7f66b9197aa0a1b9f3a2aa

    • SHA256

      e2ccb3c0d23f0d04ee8057f5ce3861eea952fb20694c1656c9805b1d4cd922ff

    • SHA512

      edc1981d7a4f191333c43bb7f760f5c58191599965aa1e53ba60777302ba5499b301f43189ecaad045bd22f8bed43205cbb0a0ddb9b68da1389fead8d946971d

    • SSDEEP

      49152:pJAZvThICXI+X/w5zcnTdSljPWHb59XUmisH5VdEPF63gO8FsAA:pJAZvThIqXqzYTYLWnisP2PF63gxtA

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1

    • Target

      $SYSDIR/giveio.sys

    • Size

      5KB

    • MD5

      77ebf3e9386daa51551af429052d88d0

    • SHA1

      bd4f3e24f531e974fbaac43381120b42e804fbaf

    • SHA256

      94c3294bb9e14b07448734ae65b37801d3ff15bec987d182a929a017fef7b276

    • SHA512

      16633dcc0e281c029e05256033a49bf4926708731d1ba03eb9699c13d3cb14298b15bb7280628f4410ccb1d98b4fa93af1a8318b33d319abe286e1357e27c9db

    • SSDEEP

      96:2jRYFbLudvrqTSxMQwh+S6d02LugmCZyH:ISx6dlLw

    Score
    1/10
    behavioral2

    • Target

      $SYSDIR/speedfan.sys

    • Size

      27KB

    • MD5

      0ffe35f0b0cd5a324bbe22f02569ae3b

    • SHA1

      25789f290feba14f53d48f4d1a5003ec130f7d95

    • SHA256

      f4ee803eefdb4eaeedb3024c3516f1f9a202c77f4870d6b74356bbde32b3b560

    • SHA512

      89b821f07a5b367cb8693209185c94b86edc2145c5925ab066c23ef8c65603be53e0fc292e4cfae32a8f01ad4a752dfed051dfe86f5cb68cada992a89ea2deb0

    • SSDEEP

      768:Bgd7I6ssDVLGRe3gAzZ5uUL3DjApRhg4+KNxG:Bgt+JINZ5/sPD+cxG

    Score
    1/10
    behavioral3

MITRE ATT&CK Enterprise v15

Tasks