General
-
Target
18a89b346084c9109761435798a12c4f16b664c39d2260e662ce1e862a43145e
-
Size
36KB
-
Sample
220212-dk1f1afcb9
-
MD5
6737a157fdf0c981b8771d40a5921a19
-
SHA1
be0d1ea549d0e4539826a5b63f991c0961223d9a
-
SHA256
18a89b346084c9109761435798a12c4f16b664c39d2260e662ce1e862a43145e
-
SHA512
3c36a757980ad02b4b92bd53fd0b2cab5ffd1743280f9edf0ffecda6eb4b45eed63df3a7bdf5cea27629448c83407aa270a43aeffedb2a2979c1768d3fdc67b8
Static task
static1
Behavioral task
behavioral1
Sample
18a89b346084c9109761435798a12c4f16b664c39d2260e662ce1e862a43145e.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
18a89b346084c9109761435798a12c4f16b664c39d2260e662ce1e862a43145e.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
18a89b346084c9109761435798a12c4f16b664c39d2260e662ce1e862a43145e
-
Size
36KB
-
MD5
6737a157fdf0c981b8771d40a5921a19
-
SHA1
be0d1ea549d0e4539826a5b63f991c0961223d9a
-
SHA256
18a89b346084c9109761435798a12c4f16b664c39d2260e662ce1e862a43145e
-
SHA512
3c36a757980ad02b4b92bd53fd0b2cab5ffd1743280f9edf0ffecda6eb4b45eed63df3a7bdf5cea27629448c83407aa270a43aeffedb2a2979c1768d3fdc67b8
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-