General
-
Target
0fb8a856903b4efb1c65ef70f1ceb2ac7653a5c2b4fc6452591bfa30f36c9dfa
-
Size
192KB
-
Sample
221107-w1y7zsbga3
-
MD5
007e73171c71e0980a7fce03dde60fe9
-
SHA1
310163012cc896d873d104169122bc24f891fe57
-
SHA256
0fb8a856903b4efb1c65ef70f1ceb2ac7653a5c2b4fc6452591bfa30f36c9dfa
-
SHA512
2be3d1b28e1b81be34a224f5d49d7fcf2c513d69dad3f0f140644b52f1ed73c92e9631f7ce568ea12310e5dbd6b797625492fed33debd1c38a6a4b712b1f2d3d
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCmvfIcGlTZG17lgVUInUF:gDCwfG1bnx4NZKlmjUF
Malware Config
Targets
-
-
Target
0fb8a856903b4efb1c65ef70f1ceb2ac7653a5c2b4fc6452591bfa30f36c9dfa
-
Size
192KB
-
MD5
007e73171c71e0980a7fce03dde60fe9
-
SHA1
310163012cc896d873d104169122bc24f891fe57
-
SHA256
0fb8a856903b4efb1c65ef70f1ceb2ac7653a5c2b4fc6452591bfa30f36c9dfa
-
SHA512
2be3d1b28e1b81be34a224f5d49d7fcf2c513d69dad3f0f140644b52f1ed73c92e9631f7ce568ea12310e5dbd6b797625492fed33debd1c38a6a4b712b1f2d3d
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCmvfIcGlTZG17lgVUInUF:gDCwfG1bnx4NZKlmjUF
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-