General
-
Target
0f82feba9e0a27ad85d50aa679d752be2bbd01a2da26288b0ea910d167dd5d4b
-
Size
175KB
-
Sample
221021-czvnmagfcm
-
MD5
72233adb99cb8500659a93deed9d93e7
-
SHA1
8c5e0775b9315c3815eb1eb4ed7b999499318c1a
-
SHA256
0f82feba9e0a27ad85d50aa679d752be2bbd01a2da26288b0ea910d167dd5d4b
-
SHA512
90375e23ac78d0319e3b58c663669c28599fbbfb5fe6f0b727b4525848c0c2d0f787cf4861c87f4de685ea0c1681bf4c4304729efdbf14f78700e3404e6cf207
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCmT47++M4lJiSp:gDCwfG1bnxM6+MIJ1
Malware Config
Targets
-
-
Target
0f82feba9e0a27ad85d50aa679d752be2bbd01a2da26288b0ea910d167dd5d4b
-
Size
175KB
-
MD5
72233adb99cb8500659a93deed9d93e7
-
SHA1
8c5e0775b9315c3815eb1eb4ed7b999499318c1a
-
SHA256
0f82feba9e0a27ad85d50aa679d752be2bbd01a2da26288b0ea910d167dd5d4b
-
SHA512
90375e23ac78d0319e3b58c663669c28599fbbfb5fe6f0b727b4525848c0c2d0f787cf4861c87f4de685ea0c1681bf4c4304729efdbf14f78700e3404e6cf207
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCmT47++M4lJiSp:gDCwfG1bnxM6+MIJ1
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-