General
-
Target
0ad090ea42302cec5037dfe111014682cf0b72ae34c3c2d83d6705c59f170d0e
-
Size
2.4MB
-
Sample
221123-vm7frshe29
-
MD5
3cc08484a5832e084968697b3482500c
-
SHA1
7c44cdba35af72cbd2f8a024192b251350ccb501
-
SHA256
0ad090ea42302cec5037dfe111014682cf0b72ae34c3c2d83d6705c59f170d0e
-
SHA512
64cfc7a9a7bbceee98a272bc853f480e5784af2a84db6bb809829ad580b4bad99a45d38453fc867c1426913a83512dc6c01301e3eba6fe526ebfa33b51820c7f
-
SSDEEP
49152:FstL1S9LWLl1hYRtUwSLOekVK7vObWhLzaBkiZoStBWGJoEr9KF:FstULm1hYtSCwObULGBhKE7rc
Malware Config
Targets
-
-
Target
0ad090ea42302cec5037dfe111014682cf0b72ae34c3c2d83d6705c59f170d0e
-
Size
2.4MB
-
MD5
3cc08484a5832e084968697b3482500c
-
SHA1
7c44cdba35af72cbd2f8a024192b251350ccb501
-
SHA256
0ad090ea42302cec5037dfe111014682cf0b72ae34c3c2d83d6705c59f170d0e
-
SHA512
64cfc7a9a7bbceee98a272bc853f480e5784af2a84db6bb809829ad580b4bad99a45d38453fc867c1426913a83512dc6c01301e3eba6fe526ebfa33b51820c7f
-
SSDEEP
49152:FstL1S9LWLl1hYRtUwSLOekVK7vObWhLzaBkiZoStBWGJoEr9KF:FstULm1hYtSCwObULGBhKE7rc
Score8/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-