General
-
Target
130e0b1bea3fe7aa551e58de8bb50e83647de48194302ac777c62e200d4d8cd4
-
Size
2.5MB
-
Sample
220520-12tq4shgal
-
MD5
8bb9ed74829e5998537c4c3814e33cb6
-
SHA1
37971396d9599d31975100c16e8573ce9265b038
-
SHA256
130e0b1bea3fe7aa551e58de8bb50e83647de48194302ac777c62e200d4d8cd4
-
SHA512
6c90fd66280b2fbca79589c38c2c87a13defb7cadbe2ddb95af4bd58edbb9698cb3ba9da87a57ebe4ce36eca68cb88846f0a697ce24dbeba043a18f14cf5e107
Static task
static1
Behavioral task
behavioral1
Sample
130e0b1bea3fe7aa551e58de8bb50e83647de48194302ac777c62e200d4d8cd4.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
130e0b1bea3fe7aa551e58de8bb50e83647de48194302ac777c62e200d4d8cd4.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
130e0b1bea3fe7aa551e58de8bb50e83647de48194302ac777c62e200d4d8cd4
-
Size
2.5MB
-
MD5
8bb9ed74829e5998537c4c3814e33cb6
-
SHA1
37971396d9599d31975100c16e8573ce9265b038
-
SHA256
130e0b1bea3fe7aa551e58de8bb50e83647de48194302ac777c62e200d4d8cd4
-
SHA512
6c90fd66280b2fbca79589c38c2c87a13defb7cadbe2ddb95af4bd58edbb9698cb3ba9da87a57ebe4ce36eca68cb88846f0a697ce24dbeba043a18f14cf5e107
Score10/10-
Registers COM server for autorun
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-