General
-
Target
1754c97bc92e5d29a2f4034d7219a0d8137f7bfd716cef315db8fb7c4e4ba2d5
-
Size
60KB
-
Sample
220212-d4e96shafk
-
MD5
1336d09273a7ef40a163b42b892c122f
-
SHA1
dd9363d49f398dfd7cd168edb649d4529c43c483
-
SHA256
1754c97bc92e5d29a2f4034d7219a0d8137f7bfd716cef315db8fb7c4e4ba2d5
-
SHA512
a40913ba3409e9a56410490863cb81a1d794412e542ad4cb459670a5d1ee48e7419d3e7e5061b32a0b8e69bd4c82481b86330c75e96f12f71b2e719a3fe872e4
Static task
static1
Behavioral task
behavioral1
Sample
1754c97bc92e5d29a2f4034d7219a0d8137f7bfd716cef315db8fb7c4e4ba2d5.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
1754c97bc92e5d29a2f4034d7219a0d8137f7bfd716cef315db8fb7c4e4ba2d5.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
1754c97bc92e5d29a2f4034d7219a0d8137f7bfd716cef315db8fb7c4e4ba2d5
-
Size
60KB
-
MD5
1336d09273a7ef40a163b42b892c122f
-
SHA1
dd9363d49f398dfd7cd168edb649d4529c43c483
-
SHA256
1754c97bc92e5d29a2f4034d7219a0d8137f7bfd716cef315db8fb7c4e4ba2d5
-
SHA512
a40913ba3409e9a56410490863cb81a1d794412e542ad4cb459670a5d1ee48e7419d3e7e5061b32a0b8e69bd4c82481b86330c75e96f12f71b2e719a3fe872e4
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-