General
-
Target
049de85728a091b80f7fbd680956c0a17e4ec0d64047fca3683a3cda63f94623
-
Size
36KB
-
Sample
220212-nfzzsaddan
-
MD5
0c7b4dfab30b291bcd446a54b5337156
-
SHA1
a6185081cae3fbe24702a7e3465d25013b4af83e
-
SHA256
049de85728a091b80f7fbd680956c0a17e4ec0d64047fca3683a3cda63f94623
-
SHA512
14f56b5dd126a90ef0f8ac3544b589c97ec4e05c80079ca41c9a835339ac45196e60e75847ede38ced804940c5c511713020ae9fe0cdd64c23759573396ff8cd
Static task
static1
Behavioral task
behavioral1
Sample
049de85728a091b80f7fbd680956c0a17e4ec0d64047fca3683a3cda63f94623.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
049de85728a091b80f7fbd680956c0a17e4ec0d64047fca3683a3cda63f94623.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
049de85728a091b80f7fbd680956c0a17e4ec0d64047fca3683a3cda63f94623
-
Size
36KB
-
MD5
0c7b4dfab30b291bcd446a54b5337156
-
SHA1
a6185081cae3fbe24702a7e3465d25013b4af83e
-
SHA256
049de85728a091b80f7fbd680956c0a17e4ec0d64047fca3683a3cda63f94623
-
SHA512
14f56b5dd126a90ef0f8ac3544b589c97ec4e05c80079ca41c9a835339ac45196e60e75847ede38ced804940c5c511713020ae9fe0cdd64c23759573396ff8cd
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-