General
-
Target
7966eba5e679f94a6bdbc3fadd02c9845ab5ae4c1048831b6dfe68e4af88cb65
-
Size
276KB
-
Sample
221123-s4g64aga7v
-
MD5
e135a152b42c4e113df9249659beac56
-
SHA1
309ec20426483298d3b33c1f609df44e803566a7
-
SHA256
7966eba5e679f94a6bdbc3fadd02c9845ab5ae4c1048831b6dfe68e4af88cb65
-
SHA512
c4ae7413b83355feff387027aeaa6e229afcbb7415faf98ae85735750503c0dfafb38bad2c8607eac346f7ae2d15a1568f04d8c4da4a401c11dfd0d640803c65
-
SSDEEP
6144:G1YYcs3p9PiCmw2CWqWMqafnoFMGHkXRTE2uf84UVmkk40gNfKx:G1J/XiCmW/qZ+GbfdqkTK6
Malware Config
Targets
-
-
Target
7966eba5e679f94a6bdbc3fadd02c9845ab5ae4c1048831b6dfe68e4af88cb65
-
Size
276KB
-
MD5
e135a152b42c4e113df9249659beac56
-
SHA1
309ec20426483298d3b33c1f609df44e803566a7
-
SHA256
7966eba5e679f94a6bdbc3fadd02c9845ab5ae4c1048831b6dfe68e4af88cb65
-
SHA512
c4ae7413b83355feff387027aeaa6e229afcbb7415faf98ae85735750503c0dfafb38bad2c8607eac346f7ae2d15a1568f04d8c4da4a401c11dfd0d640803c65
-
SSDEEP
6144:G1YYcs3p9PiCmw2CWqWMqafnoFMGHkXRTE2uf84UVmkk40gNfKx:G1J/XiCmW/qZ+GbfdqkTK6
Score8/10-
Executes dropped EXE
-
Modifies AppInit DLL entries
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-