General
-
Target
file.exe
-
Size
2.2MB
-
Sample
221120-kzfhpsad3z
-
MD5
5610d72036ea9247c6510b300cba40a9
-
SHA1
91fbf37e3d0191e5d95285e00867430cddcb97e0
-
SHA256
59d73e7daf138b51061fd739aec232e1723701a78ab44f431d145f3bcc69ebbc
-
SHA512
04490b5112e17516c2800e0626839800ca357ccf2cadc947d2edd3b1b01fa32110a919ec5d8f97ff8e8233f9172b5285de988234122bc9ec63441b69cc1b4300
-
SSDEEP
49152:q2V7kOUPLuIqnhqyHWfB2UDKiy0Tktty1pAAedJ0YUxVkBaFwnm:rVkz7qnhqy2bxMty1pAr7UxVkB04m
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20221111-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.2MB
-
MD5
5610d72036ea9247c6510b300cba40a9
-
SHA1
91fbf37e3d0191e5d95285e00867430cddcb97e0
-
SHA256
59d73e7daf138b51061fd739aec232e1723701a78ab44f431d145f3bcc69ebbc
-
SHA512
04490b5112e17516c2800e0626839800ca357ccf2cadc947d2edd3b1b01fa32110a919ec5d8f97ff8e8233f9172b5285de988234122bc9ec63441b69cc1b4300
-
SSDEEP
49152:q2V7kOUPLuIqnhqyHWfB2UDKiy0Tktty1pAAedJ0YUxVkBaFwnm:rVkz7qnhqy2bxMty1pAr7UxVkB04m
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-