General
-
Target
983b468e7250ecd565072a0161ca2b04093266046fa91c3a19df62a19701113e
-
Size
241KB
-
Sample
221123-hmsamaeb36
-
MD5
6f30ccc777aeb9d85f19c45f8ab8ab99
-
SHA1
33d18a37ea7130f2a9539616fef4d6a71328601f
-
SHA256
983b468e7250ecd565072a0161ca2b04093266046fa91c3a19df62a19701113e
-
SHA512
dc9500e4108fa2d5114e26d48ddea7f5be5e86639c26e16b01db00389a996ecbd3abe92b71a5a10065b1bac1caa4733598b9fea824b3df5ab9bfeed31cadd554
-
SSDEEP
6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxg3AW1KHFn:lXmwRo+mv8QD4+0N46NKx2KHp
Malware Config
Targets
-
-
Target
983b468e7250ecd565072a0161ca2b04093266046fa91c3a19df62a19701113e
-
Size
241KB
-
MD5
6f30ccc777aeb9d85f19c45f8ab8ab99
-
SHA1
33d18a37ea7130f2a9539616fef4d6a71328601f
-
SHA256
983b468e7250ecd565072a0161ca2b04093266046fa91c3a19df62a19701113e
-
SHA512
dc9500e4108fa2d5114e26d48ddea7f5be5e86639c26e16b01db00389a996ecbd3abe92b71a5a10065b1bac1caa4733598b9fea824b3df5ab9bfeed31cadd554
-
SSDEEP
6144:zZXBsWqsE/Ao+mv8Qv0LVmwq4FU0nN876NKxg3AW1KHFn:lXmwRo+mv8QD4+0N46NKx2KHp
Score8/10-
Blocklisted process makes network request
-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-