General
-
Target
b88f30b61aa073e834c926c2df412a4b591ae28fb25741892cfed7b8f848cea0
-
Size
241KB
-
Sample
221123-hmjngseb29
-
MD5
192bb6f516a7dd558a35e599542633c8
-
SHA1
c6b9074a8e7117a91592da68325031cba9dd6ac7
-
SHA256
b88f30b61aa073e834c926c2df412a4b591ae28fb25741892cfed7b8f848cea0
-
SHA512
3d7ccc87342fc9a8df64687120fd136c1d2a94cc3566ed2199c325e15aa170957359190634b7905f3215ff309933a0f9b848643441c2a33d14bbc1c0285f7f30
-
SSDEEP
6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxYR0:lXmwRo+mv8QD4+0N46NKxYR0
Malware Config
Targets
-
-
Target
b88f30b61aa073e834c926c2df412a4b591ae28fb25741892cfed7b8f848cea0
-
Size
241KB
-
MD5
192bb6f516a7dd558a35e599542633c8
-
SHA1
c6b9074a8e7117a91592da68325031cba9dd6ac7
-
SHA256
b88f30b61aa073e834c926c2df412a4b591ae28fb25741892cfed7b8f848cea0
-
SHA512
3d7ccc87342fc9a8df64687120fd136c1d2a94cc3566ed2199c325e15aa170957359190634b7905f3215ff309933a0f9b848643441c2a33d14bbc1c0285f7f30
-
SSDEEP
6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxYR0:lXmwRo+mv8QD4+0N46NKxYR0
Score8/10-
Blocklisted process makes network request
-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-