General
-
Target
a5b2a7e1c53e0bc1b50b89be88165f4baf12590883d80f1fa550208f3f27957e
-
Size
838KB
-
Sample
210508-cf4ljm8h6j
-
MD5
5c4f3990799abbc5f359f5a8174d7278
-
SHA1
828a4f3544105ff8165c443d47da6b172b6b2467
-
SHA256
a5b2a7e1c53e0bc1b50b89be88165f4baf12590883d80f1fa550208f3f27957e
-
SHA512
15c1f37ce6fb84c9a2cb51bbc954eed59937540925e5cdcea273695af3fcca74807622046433b685791c211cf5bdaafec835951d16696526e402a60b215c39ea
Static task
static1
Behavioral task
behavioral1
Sample
a5b2a7e1c53e0bc1b50b89be88165f4baf12590883d80f1fa550208f3f27957e.exe
Resource
win7v20210408
Behavioral task
behavioral2
Sample
a5b2a7e1c53e0bc1b50b89be88165f4baf12590883d80f1fa550208f3f27957e.exe
Resource
win10v20210408
Malware Config
Targets
-
-
Target
a5b2a7e1c53e0bc1b50b89be88165f4baf12590883d80f1fa550208f3f27957e
-
Size
838KB
-
MD5
5c4f3990799abbc5f359f5a8174d7278
-
SHA1
828a4f3544105ff8165c443d47da6b172b6b2467
-
SHA256
a5b2a7e1c53e0bc1b50b89be88165f4baf12590883d80f1fa550208f3f27957e
-
SHA512
15c1f37ce6fb84c9a2cb51bbc954eed59937540925e5cdcea273695af3fcca74807622046433b685791c211cf5bdaafec835951d16696526e402a60b215c39ea
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-