General
-
Target
QIAGEN Products Screensaver 1.2.3.scr
-
Size
68.6MB
-
Sample
210722-3d4vadgg1s
-
MD5
dca1aac11e665c514f76a6c40bba0c2c
-
SHA1
12de9458d9745ee95c50facb135eee7b32aaaaef
-
SHA256
8ff3bb89a9a056079696e05263533821687633620b1f63577e81ca9d8fd8d257
-
SHA512
ccfe9adbce515f1ebcbccfb616f69114532598aa59767ad6b847d7d4283f14a8b063be175ca7e632e53876ea1ca90ff977261ee8b6c168c59426e999b02760db
Static task
static1
Behavioral task
behavioral1
Sample
QIAGEN Products Screensaver 1.2.3.scr
Resource
win7v20210408
Behavioral task
behavioral2
Sample
QIAGEN Products Screensaver 1.2.3.scr
Resource
win10v20210410
Malware Config
Targets
-
-
Target
QIAGEN Products Screensaver 1.2.3.scr
-
Size
68.6MB
-
MD5
dca1aac11e665c514f76a6c40bba0c2c
-
SHA1
12de9458d9745ee95c50facb135eee7b32aaaaef
-
SHA256
8ff3bb89a9a056079696e05263533821687633620b1f63577e81ca9d8fd8d257
-
SHA512
ccfe9adbce515f1ebcbccfb616f69114532598aa59767ad6b847d7d4283f14a8b063be175ca7e632e53876ea1ca90ff977261ee8b6c168c59426e999b02760db
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-