General
-
Target
0c07aafe3da9e4437ca8d51292d57d0b62ad8c83ead5a5b92d762f6ac84af8d4
-
Size
35KB
-
Sample
220212-jvpedabdfn
-
MD5
244d342e008222dbd8f23ae275ee9cd9
-
SHA1
5ffd3a6ec1e05b0dc69cbd1b73a1fe09fce115c6
-
SHA256
0c07aafe3da9e4437ca8d51292d57d0b62ad8c83ead5a5b92d762f6ac84af8d4
-
SHA512
0e18f5cb71888f68868705f5e333056e110022c309b7ea5712cbb0226e3c3504f0123c2cf7ae0895485da8c3bf76d425aafad13310ad5a2401dc764453e73bec
Static task
static1
Behavioral task
behavioral1
Sample
0c07aafe3da9e4437ca8d51292d57d0b62ad8c83ead5a5b92d762f6ac84af8d4.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
0c07aafe3da9e4437ca8d51292d57d0b62ad8c83ead5a5b92d762f6ac84af8d4.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
0c07aafe3da9e4437ca8d51292d57d0b62ad8c83ead5a5b92d762f6ac84af8d4
-
Size
35KB
-
MD5
244d342e008222dbd8f23ae275ee9cd9
-
SHA1
5ffd3a6ec1e05b0dc69cbd1b73a1fe09fce115c6
-
SHA256
0c07aafe3da9e4437ca8d51292d57d0b62ad8c83ead5a5b92d762f6ac84af8d4
-
SHA512
0e18f5cb71888f68868705f5e333056e110022c309b7ea5712cbb0226e3c3504f0123c2cf7ae0895485da8c3bf76d425aafad13310ad5a2401dc764453e73bec
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-