General
-
Target
4a4a0b451a08883c491b083d0f6a281f09a4b184aa7b9f24647fb63d0c10f697
-
Size
758KB
-
Sample
220712-q98j5affc6
-
MD5
e454e6f273147b2ffb1c0c33114dd3d3
-
SHA1
05043f27fbf0de532f70ba571e433f497d97c8c9
-
SHA256
4a4a0b451a08883c491b083d0f6a281f09a4b184aa7b9f24647fb63d0c10f697
-
SHA512
b06f0d5fee5f3ee95d311dcb55e1bde999dfdbbe25935ee1c778eef2c2a92c1e2560c523efa1e2035db9605d83ab2129328d64f4f284deb6be2a6f69f8aa47ec
Static task
static1
Behavioral task
behavioral1
Sample
4a4a0b451a08883c491b083d0f6a281f09a4b184aa7b9f24647fb63d0c10f697.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
4a4a0b451a08883c491b083d0f6a281f09a4b184aa7b9f24647fb63d0c10f697.exe
Resource
win10v2004-20220414-en
Malware Config
Targets
-
-
Target
4a4a0b451a08883c491b083d0f6a281f09a4b184aa7b9f24647fb63d0c10f697
-
Size
758KB
-
MD5
e454e6f273147b2ffb1c0c33114dd3d3
-
SHA1
05043f27fbf0de532f70ba571e433f497d97c8c9
-
SHA256
4a4a0b451a08883c491b083d0f6a281f09a4b184aa7b9f24647fb63d0c10f697
-
SHA512
b06f0d5fee5f3ee95d311dcb55e1bde999dfdbbe25935ee1c778eef2c2a92c1e2560c523efa1e2035db9605d83ab2129328d64f4f284deb6be2a6f69f8aa47ec
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-