General
-
Target
819e16d2ef713e67c084e9d7cb41de260ad00b598141e73811d9d32811c128ce
-
Size
158KB
-
Sample
221019-rrg5wscbcp
-
MD5
8229591dda962c90abf7da4e89ab073c
-
SHA1
b878bae76f91de82b560a15d58ce8e93f0e6b875
-
SHA256
819e16d2ef713e67c084e9d7cb41de260ad00b598141e73811d9d32811c128ce
-
SHA512
62be0282a5a2237f9c7df2db75378afe8dd347818610584dc3c6425cedaf6ad581c7d30b963b387728f1081095fdbf83e55fd948c7a85ba7576be2e0fd902d96
-
SSDEEP
3072:YBAp5XhKpN4eOyVTGfhEClj8jTk+0hMKBz6z5SU/Xbs140VBH39:PbXE9OiTGfhEClq9FKxIb/LxE139
Malware Config
Targets
-
-
Target
819e16d2ef713e67c084e9d7cb41de260ad00b598141e73811d9d32811c128ce
-
Size
158KB
-
MD5
8229591dda962c90abf7da4e89ab073c
-
SHA1
b878bae76f91de82b560a15d58ce8e93f0e6b875
-
SHA256
819e16d2ef713e67c084e9d7cb41de260ad00b598141e73811d9d32811c128ce
-
SHA512
62be0282a5a2237f9c7df2db75378afe8dd347818610584dc3c6425cedaf6ad581c7d30b963b387728f1081095fdbf83e55fd948c7a85ba7576be2e0fd902d96
-
SSDEEP
3072:YBAp5XhKpN4eOyVTGfhEClj8jTk+0hMKBz6z5SU/Xbs140VBH39:PbXE9OiTGfhEClq9FKxIb/LxE139
Score8/10-
Blocklisted process makes network request
-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-