General
-
Target
0d59c5ba879ab22421c28ff70194a9a7cff1152df2c08581f1469062b0acd2a2
-
Size
60KB
-
Sample
220212-jcjfeabbbm
-
MD5
722ebcbbdf3a08e7a4d6866b0334e3e1
-
SHA1
e7ec514dd050674eafc94de32f89a2c099acaa8d
-
SHA256
0d59c5ba879ab22421c28ff70194a9a7cff1152df2c08581f1469062b0acd2a2
-
SHA512
135724d305aa020a86c11a8c046dfddc553377f67ffc5e4028f35a350dec869672a7e11ba29f4625f25974b2ac22dd156169dc76210922d865d33422e92800db
Static task
static1
Behavioral task
behavioral1
Sample
0d59c5ba879ab22421c28ff70194a9a7cff1152df2c08581f1469062b0acd2a2.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0d59c5ba879ab22421c28ff70194a9a7cff1152df2c08581f1469062b0acd2a2.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
0d59c5ba879ab22421c28ff70194a9a7cff1152df2c08581f1469062b0acd2a2
-
Size
60KB
-
MD5
722ebcbbdf3a08e7a4d6866b0334e3e1
-
SHA1
e7ec514dd050674eafc94de32f89a2c099acaa8d
-
SHA256
0d59c5ba879ab22421c28ff70194a9a7cff1152df2c08581f1469062b0acd2a2
-
SHA512
135724d305aa020a86c11a8c046dfddc553377f67ffc5e4028f35a350dec869672a7e11ba29f4625f25974b2ac22dd156169dc76210922d865d33422e92800db
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-