General
-
Target
91456e34ecd161f317f5f2597c1e1c4ceb046c889fec76f5cdf556c262c4077e
-
Size
293KB
-
Sample
221123-qyg8ssac2x
-
MD5
436b2f12d84073b60a65b2aa9b56b640
-
SHA1
9960b5a4a1c3466bb67072f72977b0198278ebb0
-
SHA256
91456e34ecd161f317f5f2597c1e1c4ceb046c889fec76f5cdf556c262c4077e
-
SHA512
3a0f3333a735e64e01f0ac957886270dcf973f0eb364cd827ef360fd6016d2b3a031c70d04a3030a43628c97e584eab14cdd0af317dfbb1e362c545d382c266a
-
SSDEEP
6144:5OG0nzWPEcpkPH+HCJsfR9t8AC+1RVQpEcWe+zMAM+SUUB3GfI8:L0yPEyQsfdMUUgIAhSh9sb
Malware Config
Targets
-
-
Target
91456e34ecd161f317f5f2597c1e1c4ceb046c889fec76f5cdf556c262c4077e
-
Size
293KB
-
MD5
436b2f12d84073b60a65b2aa9b56b640
-
SHA1
9960b5a4a1c3466bb67072f72977b0198278ebb0
-
SHA256
91456e34ecd161f317f5f2597c1e1c4ceb046c889fec76f5cdf556c262c4077e
-
SHA512
3a0f3333a735e64e01f0ac957886270dcf973f0eb364cd827ef360fd6016d2b3a031c70d04a3030a43628c97e584eab14cdd0af317dfbb1e362c545d382c266a
-
SSDEEP
6144:5OG0nzWPEcpkPH+HCJsfR9t8AC+1RVQpEcWe+zMAM+SUUB3GfI8:L0yPEyQsfdMUUgIAhSh9sb
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-