General
-
Target
SecuriteInfo.com.Variant.Symmi.62789.30802.23604
-
Size
1.1MB
-
Sample
220714-s55nsacbd4
-
MD5
88b1e9514adcdc4941f53ac88aa7db69
-
SHA1
f53bc85c538a7ac70ab66c6f9598e8f3fd003d38
-
SHA256
6d0cf17f8f261b8c65feef7b2dbec93ceac870ca0daf6f400625c89744a4f710
-
SHA512
0636e75ad959a39da231cf416070f9541f9a04cec740937c21a5981d2ff7b3cbb090f78e792a819c18608e8acaf98310e02dfefe36269b2b956a779f03021853
Static task
static1
Behavioral task
behavioral1
Sample
SecuriteInfo.com.Variant.Symmi.62789.30802.exe
Resource
win7-20220414-en
Behavioral task
behavioral2
Sample
SecuriteInfo.com.Variant.Symmi.62789.30802.exe
Resource
win10v2004-20220414-en
Malware Config
Extracted
kutaki
http://ojorobia.club/laptop/laptop.php
http://terebinnahicc.club/sec/kool.txt
Targets
-
-
Target
SecuriteInfo.com.Variant.Symmi.62789.30802.23604
-
Size
1.1MB
-
MD5
88b1e9514adcdc4941f53ac88aa7db69
-
SHA1
f53bc85c538a7ac70ab66c6f9598e8f3fd003d38
-
SHA256
6d0cf17f8f261b8c65feef7b2dbec93ceac870ca0daf6f400625c89744a4f710
-
SHA512
0636e75ad959a39da231cf416070f9541f9a04cec740937c21a5981d2ff7b3cbb090f78e792a819c18608e8acaf98310e02dfefe36269b2b956a779f03021853
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-