General
-
Target
file.exe
-
Size
2.2MB
-
Sample
221120-tgrmpaec9y
-
MD5
ffbfa589e24a087681b9034cd6efa621
-
SHA1
8b4fdb603671f4c8869a170e8794582a4653262f
-
SHA256
22aa0bf5e5d44d1a905f612cec530f01f41942d166508735c7bafca3faff2760
-
SHA512
6636a8e35f2d034bf4807eed0cdbb904c2d561b056ac2dd8f143ba4066c7aaab7faf9f171ed01ea91fd4e64fbd044834bc909b9fa339cc8ddc897a016f7eaf89
-
SSDEEP
49152:q2b26UkuVPwkQ72uewoIOgmUuC4EEROzGgCGDcUxVkBaFwnm:ry3JKh2XwsEzGMYUxVkB04m
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.2MB
-
MD5
ffbfa589e24a087681b9034cd6efa621
-
SHA1
8b4fdb603671f4c8869a170e8794582a4653262f
-
SHA256
22aa0bf5e5d44d1a905f612cec530f01f41942d166508735c7bafca3faff2760
-
SHA512
6636a8e35f2d034bf4807eed0cdbb904c2d561b056ac2dd8f143ba4066c7aaab7faf9f171ed01ea91fd4e64fbd044834bc909b9fa339cc8ddc897a016f7eaf89
-
SSDEEP
49152:q2b26UkuVPwkQ72uewoIOgmUuC4EEROzGgCGDcUxVkBaFwnm:ry3JKh2XwsEzGMYUxVkB04m
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-