General
-
Target
ae769b328bb61b642ba1177d138f8732be2e27fd91af5e226dc99b88bb35bdcb
-
Size
229KB
-
Sample
220919-lhfyksaeh7
-
MD5
a2370ca56445054a0985a0972e0040ca
-
SHA1
823a2bd23f749a26ce4743279d5d85129830f2fc
-
SHA256
ae769b328bb61b642ba1177d138f8732be2e27fd91af5e226dc99b88bb35bdcb
-
SHA512
666a9cb47607dd9c0c2928a83ea830939371cee0cfc21ec6964acb26c14268eef37e9417740f5ce6d86312d301532c989b2b576086182e37c2fd1db6a2e71728
-
SSDEEP
3072:qpBPC1EnflTLH6PMMMZMMMMMMMMMMMMs:wH6MMMZMMMMMMMMMMMM
Static task
static1
Behavioral task
behavioral1
Sample
ae769b328bb61b642ba1177d138f8732be2e27fd91af5e226dc99b88bb35bdcb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ae769b328bb61b642ba1177d138f8732be2e27fd91af5e226dc99b88bb35bdcb.exe
Resource
win10v2004-20220901-en
Malware Config
Extracted
raccoon
7394a7fc5da9794209d8b0503ca4abf4
http://94.131.106.59
Targets
-
-
Target
ae769b328bb61b642ba1177d138f8732be2e27fd91af5e226dc99b88bb35bdcb
-
Size
229KB
-
MD5
a2370ca56445054a0985a0972e0040ca
-
SHA1
823a2bd23f749a26ce4743279d5d85129830f2fc
-
SHA256
ae769b328bb61b642ba1177d138f8732be2e27fd91af5e226dc99b88bb35bdcb
-
SHA512
666a9cb47607dd9c0c2928a83ea830939371cee0cfc21ec6964acb26c14268eef37e9417740f5ce6d86312d301532c989b2b576086182e37c2fd1db6a2e71728
-
SSDEEP
3072:qpBPC1EnflTLH6PMMMZMMMMMMMMMMMMs:wH6MMMZMMMMMMMMMMMM
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Suspicious use of SetThreadContext
-