General
-
Target
db81c36176b8ba86f2069bece6601af6695cdc34ed665d7db00b44d2270ef419
-
Size
516KB
-
Sample
221123-s64g4sgc4v
-
MD5
d02f0af0402ac1abdcea33faccf55e82
-
SHA1
9edee04da2f3230ac265c3f86c5cb11a2518bfee
-
SHA256
db81c36176b8ba86f2069bece6601af6695cdc34ed665d7db00b44d2270ef419
-
SHA512
99a781dc21a45fb91bb6c7cc0e0dd76c58b00434b8dcd459c4f801cd2fb486bb6f8ad2486728fc0ae2463cdcca816be53f1c1df21e4cb64f75cea5dc76963915
-
SSDEEP
6144:gfGqIV9mizU70SQg8xjcgwRPdbRLpvAtL5Nqh689z2J6ypEBIMvO1Kt:gfGqg9miiPQgCojVb7CLLOz2JoBIM2Et
Malware Config
Targets
-
-
Target
db81c36176b8ba86f2069bece6601af6695cdc34ed665d7db00b44d2270ef419
-
Size
516KB
-
MD5
d02f0af0402ac1abdcea33faccf55e82
-
SHA1
9edee04da2f3230ac265c3f86c5cb11a2518bfee
-
SHA256
db81c36176b8ba86f2069bece6601af6695cdc34ed665d7db00b44d2270ef419
-
SHA512
99a781dc21a45fb91bb6c7cc0e0dd76c58b00434b8dcd459c4f801cd2fb486bb6f8ad2486728fc0ae2463cdcca816be53f1c1df21e4cb64f75cea5dc76963915
-
SSDEEP
6144:gfGqIV9mizU70SQg8xjcgwRPdbRLpvAtL5Nqh689z2J6ypEBIMvO1Kt:gfGqg9miiPQgCojVb7CLLOz2JoBIM2Et
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-