General
-
Target
b63f81fb0b48d79ef494615e688a75a395b50b1013487a669c1e296724f20553
-
Size
276KB
-
Sample
221123-vwmgysda9z
-
MD5
42ec7c24584729d3f6c977456a05d8f0
-
SHA1
4898b07fff5acf4855dcb00e3335cc6e20b67a49
-
SHA256
b63f81fb0b48d79ef494615e688a75a395b50b1013487a669c1e296724f20553
-
SHA512
4d703f1fea0954767fab3f6896b40baa3c02554058a159bb262a27ecf484059713595468b54f14c18521a60a2600eb3de72154c41a15314012ad914216d750a4
-
SSDEEP
6144:y5wavQHcZQ2hqU+6ONGn0BbjvwC1SL3HAijW46BC:y5wavmcZQ2hqU+VNGn0RjvwC1SxjW46B
Malware Config
Targets
-
-
Target
b63f81fb0b48d79ef494615e688a75a395b50b1013487a669c1e296724f20553
-
Size
276KB
-
MD5
42ec7c24584729d3f6c977456a05d8f0
-
SHA1
4898b07fff5acf4855dcb00e3335cc6e20b67a49
-
SHA256
b63f81fb0b48d79ef494615e688a75a395b50b1013487a669c1e296724f20553
-
SHA512
4d703f1fea0954767fab3f6896b40baa3c02554058a159bb262a27ecf484059713595468b54f14c18521a60a2600eb3de72154c41a15314012ad914216d750a4
-
SSDEEP
6144:y5wavQHcZQ2hqU+6ONGn0BbjvwC1SL3HAijW46BC:y5wavmcZQ2hqU+VNGn0RjvwC1SxjW46B
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-