General
-
Target
12bcb54f26499cb93b213e37687b742476cacf1c45935115596f041186394b91
-
Size
1.3MB
-
Sample
201108-qe331e7p1j
-
MD5
99ad17d0fe60a5c648422b899f4d8e8c
-
SHA1
f8b2e57c25192f5fd40afc07c9b8515526067054
-
SHA256
12bcb54f26499cb93b213e37687b742476cacf1c45935115596f041186394b91
-
SHA512
804dff291b60631b6d5bec2a92b23a4675e5bb08a0b1a789b7096471e8b32d35c6d02ba8f62eba2d5bd68dc05ca163601f0cdf7d55b3d94c649c706ecd081c2e
Static task
static1
Behavioral task
behavioral1
Sample
12bcb54f26499cb93b213e37687b742476cacf1c45935115596f041186394b91.exe
Resource
win7v20201028
Behavioral task
behavioral2
Sample
12bcb54f26499cb93b213e37687b742476cacf1c45935115596f041186394b91.exe
Resource
win10v20201028
Malware Config
Targets
-
-
Target
12bcb54f26499cb93b213e37687b742476cacf1c45935115596f041186394b91
-
Size
1.3MB
-
MD5
99ad17d0fe60a5c648422b899f4d8e8c
-
SHA1
f8b2e57c25192f5fd40afc07c9b8515526067054
-
SHA256
12bcb54f26499cb93b213e37687b742476cacf1c45935115596f041186394b91
-
SHA512
804dff291b60631b6d5bec2a92b23a4675e5bb08a0b1a789b7096471e8b32d35c6d02ba8f62eba2d5bd68dc05ca163601f0cdf7d55b3d94c649c706ecd081c2e
Score10/10-
Registers COM server for autorun
-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
JavaScript code in executable
-
Modifies service
-