General
-
Target
fb9367fc01d62c07a617373ecdc5d6e703c91b4455560965fcb253cafab13478
-
Size
115KB
-
Sample
220520-3ajsyabeal
-
MD5
7103f17d8ef1883e893a9a10333feec2
-
SHA1
46f722fc1af5cba5cf322a8c3af20f58cfce47e9
-
SHA256
fb9367fc01d62c07a617373ecdc5d6e703c91b4455560965fcb253cafab13478
-
SHA512
8b177b6128b78756b3a75f22ef4f62d9b5bf189c7e53dc4cc7871dc24bc93a5677f27ac2064e483cb09a55f2b4825148da8499373708046645c425508f5f8fb0
Static task
static1
Behavioral task
behavioral1
Sample
fb9367fc01d62c07a617373ecdc5d6e703c91b4455560965fcb253cafab13478.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
fb9367fc01d62c07a617373ecdc5d6e703c91b4455560965fcb253cafab13478.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
fb9367fc01d62c07a617373ecdc5d6e703c91b4455560965fcb253cafab13478
-
Size
115KB
-
MD5
7103f17d8ef1883e893a9a10333feec2
-
SHA1
46f722fc1af5cba5cf322a8c3af20f58cfce47e9
-
SHA256
fb9367fc01d62c07a617373ecdc5d6e703c91b4455560965fcb253cafab13478
-
SHA512
8b177b6128b78756b3a75f22ef4f62d9b5bf189c7e53dc4cc7871dc24bc93a5677f27ac2064e483cb09a55f2b4825148da8499373708046645c425508f5f8fb0
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Adds Run key to start application
-