General
-
Target
e1364780b627ee1a1dfd0ef005e5d81c211a770ba91f6ede4de31f0602d57c78
-
Size
388KB
-
Sample
220926-lzfn5sbefr
-
MD5
e445bba35cddcee9f1c4689c93b46272
-
SHA1
451338e88354795e0081fc54f96fc0a20b9aa3f0
-
SHA256
e1364780b627ee1a1dfd0ef005e5d81c211a770ba91f6ede4de31f0602d57c78
-
SHA512
20393fe98582c4cb0d107a820459531d9c4ae07c71e75ae4a9b8ed7db9c36eb1be3917c8cf0a220c9c7363789470e7a137bf1fd054a8669f8c860920644ba882
-
SSDEEP
768:nEVEVEVEVEVEa4tF4n4n4n4n4uR77777E:NR77777E
Static task
static1
Behavioral task
behavioral1
Sample
e1364780b627ee1a1dfd0ef005e5d81c211a770ba91f6ede4de31f0602d57c78.vbs
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
e1364780b627ee1a1dfd0ef005e5d81c211a770ba91f6ede4de31f0602d57c78.vbs
Resource
win10v2004-20220812-en
Malware Config
Extracted
Protocol: ftp- Host:
185.27.133.14 - Port:
21 - Username:
fsocietyandtools@fsocietyandtools.vip - Password:
Rfg250583
Targets
-
-
Target
e1364780b627ee1a1dfd0ef005e5d81c211a770ba91f6ede4de31f0602d57c78
-
Size
388KB
-
MD5
e445bba35cddcee9f1c4689c93b46272
-
SHA1
451338e88354795e0081fc54f96fc0a20b9aa3f0
-
SHA256
e1364780b627ee1a1dfd0ef005e5d81c211a770ba91f6ede4de31f0602d57c78
-
SHA512
20393fe98582c4cb0d107a820459531d9c4ae07c71e75ae4a9b8ed7db9c36eb1be3917c8cf0a220c9c7363789470e7a137bf1fd054a8669f8c860920644ba882
-
SSDEEP
768:nEVEVEVEVEVEa4tF4n4n4n4n4uR77777E:NR77777E
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-