General
-
Target
127e58bd65f0415ff8f61947bdcf65a65bba7b4e1015dcf52b3f4259d4b3a613
-
Size
389KB
-
Sample
221019-zqtfjagea6
-
MD5
91bbf2519af1774dfa267d0b8bfd6b00
-
SHA1
89063d3132c33b394caa83499ffa85f73d92501a
-
SHA256
127e58bd65f0415ff8f61947bdcf65a65bba7b4e1015dcf52b3f4259d4b3a613
-
SHA512
3dd3c84727661a5bd6937dfe3718105908230b360ac405c227eb9c873105f54d22d7cf8c2b91cbae3d6b03a0bd74369fef38a5aeb941ea71494611b5f1b03e54
-
SSDEEP
6144:ur1ROgMveKPoTilIk1XRghbzkK5U+eKHXDdb6wFnZQTkIPP0y7Xx3tXxRQj:u+g/Tk/ufkK5UcHNLJ+TpPseh1o
Malware Config
Targets
-
-
Target
127e58bd65f0415ff8f61947bdcf65a65bba7b4e1015dcf52b3f4259d4b3a613
-
Size
389KB
-
MD5
91bbf2519af1774dfa267d0b8bfd6b00
-
SHA1
89063d3132c33b394caa83499ffa85f73d92501a
-
SHA256
127e58bd65f0415ff8f61947bdcf65a65bba7b4e1015dcf52b3f4259d4b3a613
-
SHA512
3dd3c84727661a5bd6937dfe3718105908230b360ac405c227eb9c873105f54d22d7cf8c2b91cbae3d6b03a0bd74369fef38a5aeb941ea71494611b5f1b03e54
-
SSDEEP
6144:ur1ROgMveKPoTilIk1XRghbzkK5U+eKHXDdb6wFnZQTkIPP0y7Xx3tXxRQj:u+g/Tk/ufkK5UcHNLJ+TpPseh1o
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Drops file in System32 directory
-