General
-
Target
89b2d9b1c437224831c4a58cfdb19b494a426f68f154b70452bf096e24e02be3
-
Size
84KB
-
Sample
221011-zqwkwsebc4
-
MD5
6272bc966ee6c65b8358199ff37eba00
-
SHA1
c6bf84f89611be6da5f0a11bddf2e41f8c9b4bd5
-
SHA256
89b2d9b1c437224831c4a58cfdb19b494a426f68f154b70452bf096e24e02be3
-
SHA512
aca9936835ff1e7b6621dd28bc40e31bbac4954254e2112bc66ff1875d70fade73dff02f6a58c19b058398db427fb3f3087c68446539a04f086822ee5831fd19
-
SSDEEP
1536:cvAOKT66jhJl7SkkeYL7Cd48CArrprRdD:R6SJ5keVlXdD
Malware Config
Targets
-
-
Target
89b2d9b1c437224831c4a58cfdb19b494a426f68f154b70452bf096e24e02be3
-
Size
84KB
-
MD5
6272bc966ee6c65b8358199ff37eba00
-
SHA1
c6bf84f89611be6da5f0a11bddf2e41f8c9b4bd5
-
SHA256
89b2d9b1c437224831c4a58cfdb19b494a426f68f154b70452bf096e24e02be3
-
SHA512
aca9936835ff1e7b6621dd28bc40e31bbac4954254e2112bc66ff1875d70fade73dff02f6a58c19b058398db427fb3f3087c68446539a04f086822ee5831fd19
-
SSDEEP
1536:cvAOKT66jhJl7SkkeYL7Cd48CArrprRdD:R6SJ5keVlXdD
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-