General
-
Target
0c12aff35e060867f84f11a2fec782129e1b9dc847586925efdadaacab75af39
-
Size
43KB
-
Sample
221007-djw27abfcm
-
MD5
b9963aec9f2d3d7d7f92c5b739135e8e
-
SHA1
890e9dfe9945a6c8bf29bf22bad53267a0e1e5b2
-
SHA256
0c12aff35e060867f84f11a2fec782129e1b9dc847586925efdadaacab75af39
-
SHA512
05543c568717b19d0057b77770ec0f7df2c47658d4c825fc714d97ff1eb9a03a683245543a3725c457ef2ecd0b43c1128d4be2847ba0a090b47c5388f074813e
-
SSDEEP
768:FO05/8+zaBGSkMWAbDrq9OT+2I45c1r6H8jHywqvtu1iR4r103aNzwrDHCCjPkaV:LMmOnMKUgK9EaYHCCrk
Malware Config
Targets
-
-
Target
0c12aff35e060867f84f11a2fec782129e1b9dc847586925efdadaacab75af39
-
Size
43KB
-
MD5
b9963aec9f2d3d7d7f92c5b739135e8e
-
SHA1
890e9dfe9945a6c8bf29bf22bad53267a0e1e5b2
-
SHA256
0c12aff35e060867f84f11a2fec782129e1b9dc847586925efdadaacab75af39
-
SHA512
05543c568717b19d0057b77770ec0f7df2c47658d4c825fc714d97ff1eb9a03a683245543a3725c457ef2ecd0b43c1128d4be2847ba0a090b47c5388f074813e
-
SSDEEP
768:FO05/8+zaBGSkMWAbDrq9OT+2I45c1r6H8jHywqvtu1iR4r103aNzwrDHCCjPkaV:LMmOnMKUgK9EaYHCCrk
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-