General
-
Target
dda0e4935ca99e7ab8c481ecb417b6bccaea4df918f725894864e7101ba78e28
-
Size
260KB
-
Sample
221106-sv8yfshbe8
-
MD5
0d386acafcba65eebc05321b75bd3149
-
SHA1
79513be432c9f8d99778d1358c2c53e3c75c7ff8
-
SHA256
dda0e4935ca99e7ab8c481ecb417b6bccaea4df918f725894864e7101ba78e28
-
SHA512
45ea133b502e0b063fd39c910b50f33df9ba82458c2bd1377d76b2684e36d5deaa9327a2bc7fefbf7f103b4e622afc061874a917c7c0769d2c7e4c6cddf50b8f
-
SSDEEP
3072:t2eQZJ3mSu5e7WZcLSg797VWa4ipZHIfe6rdedUyZpiQ/VzEff7S5vT2hRQ:tamg97npJL6gOyfdzEff7Sl
Malware Config
Targets
-
-
Target
dda0e4935ca99e7ab8c481ecb417b6bccaea4df918f725894864e7101ba78e28
-
Size
260KB
-
MD5
0d386acafcba65eebc05321b75bd3149
-
SHA1
79513be432c9f8d99778d1358c2c53e3c75c7ff8
-
SHA256
dda0e4935ca99e7ab8c481ecb417b6bccaea4df918f725894864e7101ba78e28
-
SHA512
45ea133b502e0b063fd39c910b50f33df9ba82458c2bd1377d76b2684e36d5deaa9327a2bc7fefbf7f103b4e622afc061874a917c7c0769d2c7e4c6cddf50b8f
-
SSDEEP
3072:t2eQZJ3mSu5e7WZcLSg797VWa4ipZHIfe6rdedUyZpiQ/VzEff7S5vT2hRQ:tamg97npJL6gOyfdzEff7Sl
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-