General
-
Target
083b9df1d95ccb2175d1ea6ecda08e65c772f94f74d2de9535c9f628e8ef6b8c
-
Size
58KB
-
Sample
220212-l3wvjaahg7
-
MD5
26ac0d5b3c2e974ec79d2f77aeadc0d0
-
SHA1
efa55f765c4abfa24afb0a6375de5702ff7635de
-
SHA256
083b9df1d95ccb2175d1ea6ecda08e65c772f94f74d2de9535c9f628e8ef6b8c
-
SHA512
63d06a23f52d9b3ca9e18762fd47b2559693678a2949d5f8111cf1942824832a2400b00ef73f2bce2f7df837ac96f3932add6c180833dc4956f6231e4dde9a41
Static task
static1
Behavioral task
behavioral1
Sample
083b9df1d95ccb2175d1ea6ecda08e65c772f94f74d2de9535c9f628e8ef6b8c.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
083b9df1d95ccb2175d1ea6ecda08e65c772f94f74d2de9535c9f628e8ef6b8c.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
083b9df1d95ccb2175d1ea6ecda08e65c772f94f74d2de9535c9f628e8ef6b8c
-
Size
58KB
-
MD5
26ac0d5b3c2e974ec79d2f77aeadc0d0
-
SHA1
efa55f765c4abfa24afb0a6375de5702ff7635de
-
SHA256
083b9df1d95ccb2175d1ea6ecda08e65c772f94f74d2de9535c9f628e8ef6b8c
-
SHA512
63d06a23f52d9b3ca9e18762fd47b2559693678a2949d5f8111cf1942824832a2400b00ef73f2bce2f7df837ac96f3932add6c180833dc4956f6231e4dde9a41
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-