General
-
Target
1d43354784ca57a6d0bcd8fc4314f42770c27fbb98c880424b2b1d9c0209fb29
-
Size
335KB
-
Sample
221123-r7q3qsde9y
-
MD5
46038c082cce7db80c88f4cd0541782a
-
SHA1
dce1de9d8193dffb02275837778bd02dc7c321c9
-
SHA256
1d43354784ca57a6d0bcd8fc4314f42770c27fbb98c880424b2b1d9c0209fb29
-
SHA512
b5a734c4621b35aff23c8ff0d4dd66efcf7c1a8ef5db20461ba992441ca9b896aea72972d29f07c8bb1b67a8d213ee335d38a098562e97382e49e38b0f66dece
-
SSDEEP
3072:QlIHttMF7GAAe7DSaqByBGclJomL2BuU7f61uQf23EmkEa3Eyr8Q3oXb0NENXNvQ:QwMF7GF7CJRYiuC2U0yr8Tr3Q
Malware Config
Targets
-
-
Target
1d43354784ca57a6d0bcd8fc4314f42770c27fbb98c880424b2b1d9c0209fb29
-
Size
335KB
-
MD5
46038c082cce7db80c88f4cd0541782a
-
SHA1
dce1de9d8193dffb02275837778bd02dc7c321c9
-
SHA256
1d43354784ca57a6d0bcd8fc4314f42770c27fbb98c880424b2b1d9c0209fb29
-
SHA512
b5a734c4621b35aff23c8ff0d4dd66efcf7c1a8ef5db20461ba992441ca9b896aea72972d29f07c8bb1b67a8d213ee335d38a098562e97382e49e38b0f66dece
-
SSDEEP
3072:QlIHttMF7GAAe7DSaqByBGclJomL2BuU7f61uQf23EmkEa3Eyr8Q3oXb0NENXNvQ:QwMF7GF7CJRYiuC2U0yr8Tr3Q
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-