General
-
Target
2d9aec59bfac3ad46075242666cd7ac6b9f95e32a36b7730759626aba8f1a663
-
Size
136KB
-
Sample
221012-rem6daefe2
-
MD5
66b643180b3eede0c41e118fe849bae3
-
SHA1
2b449e55ef27e98da953ff0d57aec3488c9d978b
-
SHA256
2d9aec59bfac3ad46075242666cd7ac6b9f95e32a36b7730759626aba8f1a663
-
SHA512
0ca33d38032f8fdac87f994ded1155d2497b574ec0be87c028206bc6fd7af7999db40c0c7f553551930d4e964d726ee7ecd7b8fba4b3b18ea5fc53e7eccc0bca
-
SSDEEP
3072:BmeMlwjBfQn7WbIqH0ybZBiOllyEmcP82+aVdOt66VGegmp:BmgQn7WbIqH0ybZBiOllyE5D+aVkjseN
Malware Config
Targets
-
-
Target
2d9aec59bfac3ad46075242666cd7ac6b9f95e32a36b7730759626aba8f1a663
-
Size
136KB
-
MD5
66b643180b3eede0c41e118fe849bae3
-
SHA1
2b449e55ef27e98da953ff0d57aec3488c9d978b
-
SHA256
2d9aec59bfac3ad46075242666cd7ac6b9f95e32a36b7730759626aba8f1a663
-
SHA512
0ca33d38032f8fdac87f994ded1155d2497b574ec0be87c028206bc6fd7af7999db40c0c7f553551930d4e964d726ee7ecd7b8fba4b3b18ea5fc53e7eccc0bca
-
SSDEEP
3072:BmeMlwjBfQn7WbIqH0ybZBiOllyEmcP82+aVdOt66VGegmp:BmgQn7WbIqH0ybZBiOllyE5D+aVkjseN
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-