General
-
Target
529458ceae5bd6972b7b0b71181c40e5d15e81c4536ac2319b88a630c4fd5978
-
Size
344KB
-
Sample
221123-vrcryscf7z
-
MD5
fe7a155ad4c2e020a60c89e0d5769ef8
-
SHA1
b4908511d54a8c58aacb55881b332df99510db76
-
SHA256
529458ceae5bd6972b7b0b71181c40e5d15e81c4536ac2319b88a630c4fd5978
-
SHA512
703ab56c68c74a9b7fa05e678247cdfc8ab3001d12688ed6f72c548d454eee97f3011509a23b90bc0fe88656681da0813ac54645ca89b5c6a379f5da59ebb3b5
-
SSDEEP
6144:z2vIKaPWR5o148p3+tuyhyeIA98iTi1zd0ITd0:W/a+sd5ByhjIAqiWZ61
Malware Config
Targets
-
-
Target
529458ceae5bd6972b7b0b71181c40e5d15e81c4536ac2319b88a630c4fd5978
-
Size
344KB
-
MD5
fe7a155ad4c2e020a60c89e0d5769ef8
-
SHA1
b4908511d54a8c58aacb55881b332df99510db76
-
SHA256
529458ceae5bd6972b7b0b71181c40e5d15e81c4536ac2319b88a630c4fd5978
-
SHA512
703ab56c68c74a9b7fa05e678247cdfc8ab3001d12688ed6f72c548d454eee97f3011509a23b90bc0fe88656681da0813ac54645ca89b5c6a379f5da59ebb3b5
-
SSDEEP
6144:z2vIKaPWR5o148p3+tuyhyeIA98iTi1zd0ITd0:W/a+sd5ByhjIAqiWZ61
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-