General
-
Target
f7d19b967d8d5c4430f1f07b8e8012b7e4350a36e98d0f76b672c0227d5e37cc
-
Size
978KB
-
Sample
220503-alen5sffeq
-
MD5
0a57cf93855798d5c2e7d73e3e246273
-
SHA1
be46616f832c6af9f3d148ca9627e50cf99d18a4
-
SHA256
f7d19b967d8d5c4430f1f07b8e8012b7e4350a36e98d0f76b672c0227d5e37cc
-
SHA512
482aa50e50a901c48485d34e97a8b8fc05e0ff996c13a53182e692a6b710da8d060b69c8eede09a9471797417c30a55f600d76a063082623d159c3e6ad663ec4
Static task
static1
Behavioral task
behavioral1
Sample
f7d19b967d8d5c4430f1f07b8e8012b7e4350a36e98d0f76b672c0227d5e37cc.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
f7d19b967d8d5c4430f1f07b8e8012b7e4350a36e98d0f76b672c0227d5e37cc.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
f7d19b967d8d5c4430f1f07b8e8012b7e4350a36e98d0f76b672c0227d5e37cc
-
Size
978KB
-
MD5
0a57cf93855798d5c2e7d73e3e246273
-
SHA1
be46616f832c6af9f3d148ca9627e50cf99d18a4
-
SHA256
f7d19b967d8d5c4430f1f07b8e8012b7e4350a36e98d0f76b672c0227d5e37cc
-
SHA512
482aa50e50a901c48485d34e97a8b8fc05e0ff996c13a53182e692a6b710da8d060b69c8eede09a9471797417c30a55f600d76a063082623d159c3e6ad663ec4
Score10/10-
Modifies system executable filetype association
-
Registers COM server for autorun
-
Disables use of System Restore points
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-