General
-
Target
9f60dcae15fa46c6090d1ee8605f60f2753733bbeaad6ec019eab13e7ec3c7cf
-
Size
244KB
-
Sample
221030-apg9fadcc7
-
MD5
93ae3f22869228964e6fded4a435ec80
-
SHA1
0bdb03ac1a18e0dec57d626ae930e7937341bdd0
-
SHA256
9f60dcae15fa46c6090d1ee8605f60f2753733bbeaad6ec019eab13e7ec3c7cf
-
SHA512
ab959dcea9c6e2a9f06997205bc62a11b9173f5e8fbac84ccc8ef0d8d300d451ee99ca25d3f2e6dbefe2a32a02b9ae5323f524510a292963beb01b0bbd3053b5
-
SSDEEP
3072:4pIWL5pjjOlrL0EMz/zPY+pCRlRWUxDhV4aLNTvyEy3qiRZ5VAbBX:SIO5Nj8/0Vz3AvWUMEy6iRZ5ebF
Malware Config
Targets
-
-
Target
9f60dcae15fa46c6090d1ee8605f60f2753733bbeaad6ec019eab13e7ec3c7cf
-
Size
244KB
-
MD5
93ae3f22869228964e6fded4a435ec80
-
SHA1
0bdb03ac1a18e0dec57d626ae930e7937341bdd0
-
SHA256
9f60dcae15fa46c6090d1ee8605f60f2753733bbeaad6ec019eab13e7ec3c7cf
-
SHA512
ab959dcea9c6e2a9f06997205bc62a11b9173f5e8fbac84ccc8ef0d8d300d451ee99ca25d3f2e6dbefe2a32a02b9ae5323f524510a292963beb01b0bbd3053b5
-
SSDEEP
3072:4pIWL5pjjOlrL0EMz/zPY+pCRlRWUxDhV4aLNTvyEy3qiRZ5VAbBX:SIO5Nj8/0Vz3AvWUMEy6iRZ5ebF
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-