General
-
Target
62f4505fcc2dc496eee01cfd8b092d4f66b4d107a6d52e887907647cc177c1f8
-
Size
134KB
-
Sample
221123-vktrwscb8t
-
MD5
5d8b2924913d123783f8c9836a502894
-
SHA1
0701c16319677842d7c1a63efd0fce1a6e9f023b
-
SHA256
62f4505fcc2dc496eee01cfd8b092d4f66b4d107a6d52e887907647cc177c1f8
-
SHA512
8c5ed264db9a3042d7a09f64fba92df4949a5e77c005f95158624c63c6eddcc03fc9c770af1290f40781caee63c6703f6638123272b63ec263bdd4fadeac5e9b
-
SSDEEP
3072:Dxaw7lEvFCsE8uKqMJBrHnsAWNqubkdBytQlaVrAUdB1/:TlFstuKqMJ9Hn5WNqub/tpV841
Behavioral task
behavioral1
Sample
62f4505fcc2dc496eee01cfd8b092d4f66b4d107a6d52e887907647cc177c1f8.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
62f4505fcc2dc496eee01cfd8b092d4f66b4d107a6d52e887907647cc177c1f8.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
62f4505fcc2dc496eee01cfd8b092d4f66b4d107a6d52e887907647cc177c1f8
-
Size
134KB
-
MD5
5d8b2924913d123783f8c9836a502894
-
SHA1
0701c16319677842d7c1a63efd0fce1a6e9f023b
-
SHA256
62f4505fcc2dc496eee01cfd8b092d4f66b4d107a6d52e887907647cc177c1f8
-
SHA512
8c5ed264db9a3042d7a09f64fba92df4949a5e77c005f95158624c63c6eddcc03fc9c770af1290f40781caee63c6703f6638123272b63ec263bdd4fadeac5e9b
-
SSDEEP
3072:Dxaw7lEvFCsE8uKqMJBrHnsAWNqubkdBytQlaVrAUdB1/:TlFstuKqMJ9Hn5WNqub/tpV841
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-