General
-
Target
24f035a79da88fabb5255846270680362af6e542f1e8722433794f87e0024cfe
-
Size
86KB
-
Sample
221028-xz7y6scebn
-
MD5
03e3bea4774d5715ab7be5997a15ed90
-
SHA1
2dbb06ccf3c21a5a295eb06c5ba387dc1100990b
-
SHA256
24f035a79da88fabb5255846270680362af6e542f1e8722433794f87e0024cfe
-
SHA512
53ffc6d1dea48babd66d5779a87914832745f16b4b0ad002891f64088bb89f0842a0e29d39a3a60a22860e03670c22c3cd1dcd102894206f9334e0ace4f54e87
-
SSDEEP
1536:i/E/8FZmgTJtnSe+L6ZtTqI1Rfkq4JoDpY7CciCEvadVj/:ickDmgTXSBCt71RfkqooDST7
Malware Config
Targets
-
-
Target
24f035a79da88fabb5255846270680362af6e542f1e8722433794f87e0024cfe
-
Size
86KB
-
MD5
03e3bea4774d5715ab7be5997a15ed90
-
SHA1
2dbb06ccf3c21a5a295eb06c5ba387dc1100990b
-
SHA256
24f035a79da88fabb5255846270680362af6e542f1e8722433794f87e0024cfe
-
SHA512
53ffc6d1dea48babd66d5779a87914832745f16b4b0ad002891f64088bb89f0842a0e29d39a3a60a22860e03670c22c3cd1dcd102894206f9334e0ace4f54e87
-
SSDEEP
1536:i/E/8FZmgTJtnSe+L6ZtTqI1Rfkq4JoDpY7CciCEvadVj/:ickDmgTXSBCt71RfkqooDST7
Score10/10-
Modifies firewall policy service
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-