General
-
Target
0fbb4a7d11fb3c548cf1e41f615128ba940ab163b4d327589b074be59651cce1
-
Size
35KB
-
Sample
220212-hatb6ahah7
-
MD5
f327f74788dced39738c2e32323e3eb8
-
SHA1
4747ba1a38d412625abcf95ad83ba943a708e639
-
SHA256
0fbb4a7d11fb3c548cf1e41f615128ba940ab163b4d327589b074be59651cce1
-
SHA512
6be50d1622096c60594b3dafb794ec61fbc8c8740c04c5f23f3887ba4cbfa6a774d35c086bb5a55b5097250bc9692b8e989a2b8f72b26dc7e1bb456fe21873a9
Static task
static1
Behavioral task
behavioral1
Sample
0fbb4a7d11fb3c548cf1e41f615128ba940ab163b4d327589b074be59651cce1.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0fbb4a7d11fb3c548cf1e41f615128ba940ab163b4d327589b074be59651cce1.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
0fbb4a7d11fb3c548cf1e41f615128ba940ab163b4d327589b074be59651cce1
-
Size
35KB
-
MD5
f327f74788dced39738c2e32323e3eb8
-
SHA1
4747ba1a38d412625abcf95ad83ba943a708e639
-
SHA256
0fbb4a7d11fb3c548cf1e41f615128ba940ab163b4d327589b074be59651cce1
-
SHA512
6be50d1622096c60594b3dafb794ec61fbc8c8740c04c5f23f3887ba4cbfa6a774d35c086bb5a55b5097250bc9692b8e989a2b8f72b26dc7e1bb456fe21873a9
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-