General
-
Target
03a4b5f75ef9e6996373c932e61b60e8764a5df1f4bc3c8614dec6223b26ee41
-
Size
36KB
-
Sample
220212-ntwjhsdegp
-
MD5
b291781647ecf62e7509cc6daae4556c
-
SHA1
97b648a0f70994f919c5abb91e5f0596eab4044f
-
SHA256
03a4b5f75ef9e6996373c932e61b60e8764a5df1f4bc3c8614dec6223b26ee41
-
SHA512
3c28a298d61b542e56507b8eae739410879c7af4a7c31d916ed5d35b332ac3a12b114468d3765d6d29d7b59b0900faa57b4adf3cd8a64702d415aa1f9b634559
Static task
static1
Behavioral task
behavioral1
Sample
03a4b5f75ef9e6996373c932e61b60e8764a5df1f4bc3c8614dec6223b26ee41.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
03a4b5f75ef9e6996373c932e61b60e8764a5df1f4bc3c8614dec6223b26ee41.exe
Resource
win10v2004-en-20220112
Malware Config
Targets
-
-
Target
03a4b5f75ef9e6996373c932e61b60e8764a5df1f4bc3c8614dec6223b26ee41
-
Size
36KB
-
MD5
b291781647ecf62e7509cc6daae4556c
-
SHA1
97b648a0f70994f919c5abb91e5f0596eab4044f
-
SHA256
03a4b5f75ef9e6996373c932e61b60e8764a5df1f4bc3c8614dec6223b26ee41
-
SHA512
3c28a298d61b542e56507b8eae739410879c7af4a7c31d916ed5d35b332ac3a12b114468d3765d6d29d7b59b0900faa57b4adf3cd8a64702d415aa1f9b634559
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-