General
-
Target
ed4fa0290120abf3c7066bfe9aa5e500a5c50c07e99d60730c6142dbf7497429
-
Size
1.6MB
-
Sample
240701-exyzdazajp
-
MD5
88607eeb559e6d054d6a427ab089b028
-
SHA1
365cb3375e1ad40ca26eb4e2da76a6ca017f8ab1
-
SHA256
ed4fa0290120abf3c7066bfe9aa5e500a5c50c07e99d60730c6142dbf7497429
-
SHA512
17f6e7fbbca593ca11a3918c9d2a9bb4f2b717f5cdbcb4b586d558fd46668de07df4470af46d59e549f262db280e66e8f0f927019ebf09af2d3b24ce654703bb
-
SSDEEP
49152:V+tD8MKaT/pIGvGW3GJ/wP2n0o3fl8UYJkWn+MlY5vsmE:iD8uTxIGvqEY09UYKW+MlY5vsmE
Static task
static1
Behavioral task
behavioral1
Sample
ed4fa0290120abf3c7066bfe9aa5e500a5c50c07e99d60730c6142dbf7497429.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
ed4fa0290120abf3c7066bfe9aa5e500a5c50c07e99d60730c6142dbf7497429.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
ed4fa0290120abf3c7066bfe9aa5e500a5c50c07e99d60730c6142dbf7497429
-
Size
1.6MB
-
MD5
88607eeb559e6d054d6a427ab089b028
-
SHA1
365cb3375e1ad40ca26eb4e2da76a6ca017f8ab1
-
SHA256
ed4fa0290120abf3c7066bfe9aa5e500a5c50c07e99d60730c6142dbf7497429
-
SHA512
17f6e7fbbca593ca11a3918c9d2a9bb4f2b717f5cdbcb4b586d558fd46668de07df4470af46d59e549f262db280e66e8f0f927019ebf09af2d3b24ce654703bb
-
SSDEEP
49152:V+tD8MKaT/pIGvGW3GJ/wP2n0o3fl8UYJkWn+MlY5vsmE:iD8uTxIGvqEY09UYKW+MlY5vsmE
Score9/10-
Detects executables containing possible sandbox analysis VM usernames
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-