General
-
Target
3ec2471a7a0a060ca5c60549ec70370c708f692baa76d13049e9022252e387e0
-
Size
910KB
-
Sample
220521-xytp6agaam
-
MD5
4242ae7b111169ba16b56f3cabfb2bfd
-
SHA1
ff65a7b8b5ccb534587dbc960b7ada6caa793b60
-
SHA256
3ec2471a7a0a060ca5c60549ec70370c708f692baa76d13049e9022252e387e0
-
SHA512
ee4b881edfa71cf1b38b359cabd7d045896b71178997882713ddd508e8b43a4594e2a1119a7e8b329069fa8acd1dcebf20d90f3014960d27cbf3f54698e6b038
Static task
static1
Behavioral task
behavioral1
Sample
3ec2471a7a0a060ca5c60549ec70370c708f692baa76d13049e9022252e387e0.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
3ec2471a7a0a060ca5c60549ec70370c708f692baa76d13049e9022252e387e0.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
3ec2471a7a0a060ca5c60549ec70370c708f692baa76d13049e9022252e387e0
-
Size
910KB
-
MD5
4242ae7b111169ba16b56f3cabfb2bfd
-
SHA1
ff65a7b8b5ccb534587dbc960b7ada6caa793b60
-
SHA256
3ec2471a7a0a060ca5c60549ec70370c708f692baa76d13049e9022252e387e0
-
SHA512
ee4b881edfa71cf1b38b359cabd7d045896b71178997882713ddd508e8b43a4594e2a1119a7e8b329069fa8acd1dcebf20d90f3014960d27cbf3f54698e6b038
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-