General
-
Target
02677edff4d9608b6b445362194ea931124a2ce469287357fb8087364edaeb43
-
Size
2.1MB
-
Sample
220919-e2zfpsgad9
-
MD5
c53bc2e1dbc91fa353fff5671a9af5f2
-
SHA1
f3871a15fc5513622bb9a7c716811095d86c798a
-
SHA256
02677edff4d9608b6b445362194ea931124a2ce469287357fb8087364edaeb43
-
SHA512
7430021cf666533a3525df6b4d201fa99c0565a972d0b36b8357732cca23249374c5faa33e4519735dfe23dd4fff528f9d647100329206b14bc06cbb5673a7e5
-
SSDEEP
49152:r8GntthMrDaKGUMrAJJyGHDZOshZRg4bUTj5roB:Nt0rWuMsJJOMgg+5ri
Malware Config
Targets
-
-
Target
02677edff4d9608b6b445362194ea931124a2ce469287357fb8087364edaeb43
-
Size
2.1MB
-
MD5
c53bc2e1dbc91fa353fff5671a9af5f2
-
SHA1
f3871a15fc5513622bb9a7c716811095d86c798a
-
SHA256
02677edff4d9608b6b445362194ea931124a2ce469287357fb8087364edaeb43
-
SHA512
7430021cf666533a3525df6b4d201fa99c0565a972d0b36b8357732cca23249374c5faa33e4519735dfe23dd4fff528f9d647100329206b14bc06cbb5673a7e5
-
SSDEEP
49152:r8GntthMrDaKGUMrAJJyGHDZOshZRg4bUTj5roB:Nt0rWuMsJJOMgg+5ri
Score8/10-
Drops file in Drivers directory
-
Executes dropped EXE
-
Sets DLL path for service in the registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Drops file in System32 directory
-