General
-
Target
5654babea8cf2c856f3a9d80df0d870f.exe
-
Size
7KB
-
Sample
220930-qf4zvaeeej
-
MD5
5654babea8cf2c856f3a9d80df0d870f
-
SHA1
d1616e178c28047cda740ed548fef1ea32b706ca
-
SHA256
ae97f685de90bcfe19c397b32d12d1bca259d7465f3870083a914474efb58e34
-
SHA512
03377da27ebad86d77b546af9775bba51d170b7f0b9533b54ecac68c053e6790f15e276a15c4491fc8f162ac2275e633bf8f471244226e40a5dd523304cab863
-
SSDEEP
96:J6Zf7h++B3Evve6LYX48IhlPVsfVRu+JqojYVhqTzNt:esG6LYX45hMf6+U5Vo1
Static task
static1
Behavioral task
behavioral1
Sample
5654babea8cf2c856f3a9d80df0d870f.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
5654babea8cf2c856f3a9d80df0d870f.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
5654babea8cf2c856f3a9d80df0d870f.exe
-
Size
7KB
-
MD5
5654babea8cf2c856f3a9d80df0d870f
-
SHA1
d1616e178c28047cda740ed548fef1ea32b706ca
-
SHA256
ae97f685de90bcfe19c397b32d12d1bca259d7465f3870083a914474efb58e34
-
SHA512
03377da27ebad86d77b546af9775bba51d170b7f0b9533b54ecac68c053e6790f15e276a15c4491fc8f162ac2275e633bf8f471244226e40a5dd523304cab863
-
SSDEEP
96:J6Zf7h++B3Evve6LYX48IhlPVsfVRu+JqojYVhqTzNt:esG6LYX45hMf6+U5Vo1
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-