General
-
Target
document-35068.iso
-
Size
706KB
-
Sample
221101-ms9jbabab2
-
MD5
70ebbb2e50b4f69cab93b9fc4ecdff4f
-
SHA1
366c9cddbb36a798762f869ca7e0c187086827d7
-
SHA256
ea25090f26e76a4d91a8d6fa325fe5068c341e7c002598ed7490caee8846d2ca
-
SHA512
129a9c1d27e6cf7638d453a624e7c4ea2c6c83271d08c70e58180ad44914d7f3e5f2203d148c64b4c8c6614018e278e95f76a5ba95b1b090888e9af55d55ee79
-
SSDEEP
6144:0UybNmbA4k7pIp6vLMoimii4b2NdsPdG+DOirCOaC:obcbA4k7pvLCmii4b20g+buOa
Static task
static1
Behavioral task
behavioral1
Sample
demurest.cmd
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
demurest.cmd
Resource
win10v2004-20220901-en
Behavioral task
behavioral3
Sample
documents-9771.lnk
Resource
win7-20220812-en
Behavioral task
behavioral4
Sample
documents-9771.lnk
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
demurest.cmd
-
Size
710B
-
MD5
586fe6d361ef5208fad28c5ff8a4579b
-
SHA1
bf4177381235393279e7cdfd45a3fa497b7b8a96
-
SHA256
364d346da8e398a89d3542600cbc72984b857df3d20a6dc37879f14e5e173522
-
SHA512
bb702af1aeba2b2ccf317404f601a61457fee2348a07c55324afee32406a0ab436b49a54eee2500f3620382f066d6912724ba7cb3cf4b4b1ee4997a3a922b8ea
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
-
-
Target
documents-9771.lnk
-
Size
2KB
-
MD5
51e416c3d3be568864994449cd39caa1
-
SHA1
ee1c5e9f1257fbda3b174d534d06dddf435d3327
-
SHA256
57842fe8723ed6ebdf7fc17fc341909ad05a7a4feec8bdb5e062882da29fa1a8
-
SHA512
020cc070c30e5cf192145056b24198846b9cc856ba001924eb95d439d521cffc5c133f7c8506724a2e53083fb5cd8343945370094ed1e1923ca3e9622526bcd8
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-