General
-
Target
69c5cda07427383dfd835e0e35061f5178093201a6709cc14fc36834fcd3b7ee
-
Size
4.0MB
-
Sample
221123-njdkysha35
-
MD5
87dd9a924d5c984a2fb097202757c3eb
-
SHA1
66cd472f720f4f9b47fb8bebefdcbd62221c3be4
-
SHA256
69c5cda07427383dfd835e0e35061f5178093201a6709cc14fc36834fcd3b7ee
-
SHA512
20e1638338f838e146ccf9e44d1ac6df9b829fafb9cb2f73dde6177b82412ee09cacb402e21fa1769ac8517655c3aa5ca9f8d52668c6651736f48f762ba5782a
-
SSDEEP
98304:73S/a/VqVI0hME0Q4uDBB/U6Lx4BO8mCiSdKe5:zS/QwVIu4uDHh4BO1CBdh5
Malware Config
Targets
-
-
Target
69c5cda07427383dfd835e0e35061f5178093201a6709cc14fc36834fcd3b7ee
-
Size
4.0MB
-
MD5
87dd9a924d5c984a2fb097202757c3eb
-
SHA1
66cd472f720f4f9b47fb8bebefdcbd62221c3be4
-
SHA256
69c5cda07427383dfd835e0e35061f5178093201a6709cc14fc36834fcd3b7ee
-
SHA512
20e1638338f838e146ccf9e44d1ac6df9b829fafb9cb2f73dde6177b82412ee09cacb402e21fa1769ac8517655c3aa5ca9f8d52668c6651736f48f762ba5782a
-
SSDEEP
98304:73S/a/VqVI0hME0Q4uDBB/U6Lx4BO8mCiSdKe5:zS/QwVIu4uDHh4BO1CBdh5
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-