General
-
Target
03970670720f945125ee653a950fbede015601a40376c781f1ead685fa3f3381
-
Size
60KB
-
Sample
220212-nvr8gsbhb9
-
MD5
0e5445b6d559123a977bb6a825fbbfed
-
SHA1
b850f6cdb5ace11016415888a31b5b585c01a935
-
SHA256
03970670720f945125ee653a950fbede015601a40376c781f1ead685fa3f3381
-
SHA512
bf45d9ef0dfdab99d3c86a24835565988caa5682c01ad1e778bcca71b0661ecf465fa86a9bff5890cc7177f34b0cc1ae4b711797c66de57785e2cd13cc6ad855
Static task
static1
Behavioral task
behavioral1
Sample
03970670720f945125ee653a950fbede015601a40376c781f1ead685fa3f3381.exe
Resource
win7-en-20211208
Behavioral task
behavioral2
Sample
03970670720f945125ee653a950fbede015601a40376c781f1ead685fa3f3381.exe
Resource
win10v2004-en-20220113
Malware Config
Targets
-
-
Target
03970670720f945125ee653a950fbede015601a40376c781f1ead685fa3f3381
-
Size
60KB
-
MD5
0e5445b6d559123a977bb6a825fbbfed
-
SHA1
b850f6cdb5ace11016415888a31b5b585c01a935
-
SHA256
03970670720f945125ee653a950fbede015601a40376c781f1ead685fa3f3381
-
SHA512
bf45d9ef0dfdab99d3c86a24835565988caa5682c01ad1e778bcca71b0661ecf465fa86a9bff5890cc7177f34b0cc1ae4b711797c66de57785e2cd13cc6ad855
Score10/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-