General
-
Target
4b75a200664d5e43fb297347fd6f93e8f8685320bd1959c5b07f3c597918c8f2
-
Size
124KB
-
Sample
220712-lwazgsfga4
-
MD5
c6ce21c4c9389a23d6deac23d9d43190
-
SHA1
36036d346993df07681926111f73891dd8f19846
-
SHA256
4b75a200664d5e43fb297347fd6f93e8f8685320bd1959c5b07f3c597918c8f2
-
SHA512
fa90bc5a6d1753ae08ee384c6e7d333da416f166edc4b72b605029a01d636773e728743c86d547413e4a9bcd8ea40ddf3d89588c3aca747d20dd9575f2d2110f
Static task
static1
Behavioral task
behavioral1
Sample
4b75a200664d5e43fb297347fd6f93e8f8685320bd1959c5b07f3c597918c8f2.exe
Resource
win7-20220414-en
Malware Config
Targets
-
-
Target
4b75a200664d5e43fb297347fd6f93e8f8685320bd1959c5b07f3c597918c8f2
-
Size
124KB
-
MD5
c6ce21c4c9389a23d6deac23d9d43190
-
SHA1
36036d346993df07681926111f73891dd8f19846
-
SHA256
4b75a200664d5e43fb297347fd6f93e8f8685320bd1959c5b07f3c597918c8f2
-
SHA512
fa90bc5a6d1753ae08ee384c6e7d333da416f166edc4b72b605029a01d636773e728743c86d547413e4a9bcd8ea40ddf3d89588c3aca747d20dd9575f2d2110f
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Creates a Windows Service
-
Drops file in System32 directory
-