General
-
Target
9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b.exe.vir
-
Size
31.3MB
-
Sample
241122-ecby4stpby
-
MD5
aef178762ba9f72b9b4515f1772e80b6
-
SHA1
6acf797484117a8ff058029a0806c08b82f32954
-
SHA256
9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b
-
SHA512
370ddee9445e2ab6200da24cc73f0ff08db682a9ba18d018c4c98d83aed0f35662fb28524c61f445f61591f52956cd6082c1668b7ca4a232a25ae17809baaa7a
-
SSDEEP
786432:zO2PsT1ywB80O57/Y8sqa7FV1xX6Oq6UXirV9Md8Ww:zO2PsRywB8j5sAapvxXTamCtw
Static task
static1
Behavioral task
behavioral1
Sample
9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b.exe.vir
-
Size
31.3MB
-
MD5
aef178762ba9f72b9b4515f1772e80b6
-
SHA1
6acf797484117a8ff058029a0806c08b82f32954
-
SHA256
9ce9057feff7a9e9c750eae2ab2e50a004e5a7beff471de7b2dc28a41b34bf6b
-
SHA512
370ddee9445e2ab6200da24cc73f0ff08db682a9ba18d018c4c98d83aed0f35662fb28524c61f445f61591f52956cd6082c1668b7ca4a232a25ae17809baaa7a
-
SSDEEP
786432:zO2PsT1ywB80O57/Y8sqa7FV1xX6Oq6UXirV9Md8Ww:zO2PsRywB8j5sAapvxXTamCtw
Score10/10-
Suspicious use of NtCreateUserProcessOtherParentProcess
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-