General
-
Target
091e2e5dd2f1c1ec72309a6b1436622c8ef0c1034d96332386d08e19aac6dcb4
-
Size
36KB
-
Sample
220212-lrerwaagd5
-
MD5
0eaf55875b53b204e67aa58090b4f5bc
-
SHA1
d759232ea9df0e797352a3191813ca94a1898dda
-
SHA256
091e2e5dd2f1c1ec72309a6b1436622c8ef0c1034d96332386d08e19aac6dcb4
-
SHA512
be8614107185c8ad01af74cda6a84f88407a6a69acef2065104737c76dab5ae056f148ced4c90e22f02df5c2c07753c68c972cbc4f77dcfefcd847a0bcf888bd
Static task
static1
Behavioral task
behavioral1
Sample
091e2e5dd2f1c1ec72309a6b1436622c8ef0c1034d96332386d08e19aac6dcb4.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
091e2e5dd2f1c1ec72309a6b1436622c8ef0c1034d96332386d08e19aac6dcb4.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
091e2e5dd2f1c1ec72309a6b1436622c8ef0c1034d96332386d08e19aac6dcb4
-
Size
36KB
-
MD5
0eaf55875b53b204e67aa58090b4f5bc
-
SHA1
d759232ea9df0e797352a3191813ca94a1898dda
-
SHA256
091e2e5dd2f1c1ec72309a6b1436622c8ef0c1034d96332386d08e19aac6dcb4
-
SHA512
be8614107185c8ad01af74cda6a84f88407a6a69acef2065104737c76dab5ae056f148ced4c90e22f02df5c2c07753c68c972cbc4f77dcfefcd847a0bcf888bd
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-