General
-
Target
05ea91c6339f611142c7f68a2e8fdb6cbe5a59c05238dbf67755bc7150366acc
-
Size
58KB
-
Sample
220212-myzw3adahl
-
MD5
55422f9714dcd2e229f3028b7d3b5b79
-
SHA1
c2f2291d60c3992f2527467d968f9eb7606459e5
-
SHA256
05ea91c6339f611142c7f68a2e8fdb6cbe5a59c05238dbf67755bc7150366acc
-
SHA512
bb17f87d9503b850c6fc21cc0fe83313a2f2d203aa54b45710b81065e96480bdc5fc04b9fd14e3c3c178cf799ecc27848bcc8335690d8e922466f3e2cdf87545
Static task
static1
Behavioral task
behavioral1
Sample
05ea91c6339f611142c7f68a2e8fdb6cbe5a59c05238dbf67755bc7150366acc.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
05ea91c6339f611142c7f68a2e8fdb6cbe5a59c05238dbf67755bc7150366acc.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
05ea91c6339f611142c7f68a2e8fdb6cbe5a59c05238dbf67755bc7150366acc
-
Size
58KB
-
MD5
55422f9714dcd2e229f3028b7d3b5b79
-
SHA1
c2f2291d60c3992f2527467d968f9eb7606459e5
-
SHA256
05ea91c6339f611142c7f68a2e8fdb6cbe5a59c05238dbf67755bc7150366acc
-
SHA512
bb17f87d9503b850c6fc21cc0fe83313a2f2d203aa54b45710b81065e96480bdc5fc04b9fd14e3c3c178cf799ecc27848bcc8335690d8e922466f3e2cdf87545
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-