General
-
Target
dd7f87993993550179c238abfb97c8bf9553b821a069423c4c930cfed8c2de1f
-
Size
244KB
-
Sample
221123-w9ke7aec57
-
MD5
557a9d01550f64f357195db9982e6318
-
SHA1
b38c9a8ed1ef5f8bb10afe72ae8442d035cfdd6f
-
SHA256
dd7f87993993550179c238abfb97c8bf9553b821a069423c4c930cfed8c2de1f
-
SHA512
28d6e90c4bd757aa51ec59d72376ce6e1a1ffd94c2c6f231dbd1b2ec3722bf19366df3a77c3cb9adf03a76177eaa503708df02fad3b5ca76dc74788a863044eb
-
SSDEEP
3072:bhPBd/sROnFQP5yIuSP9lqVinU3bp/PTm2moJ6BwA+GABMndgfaU:bhJdM7PnqVinU3bw2moJ6WAdgy
Malware Config
Targets
-
-
Target
dd7f87993993550179c238abfb97c8bf9553b821a069423c4c930cfed8c2de1f
-
Size
244KB
-
MD5
557a9d01550f64f357195db9982e6318
-
SHA1
b38c9a8ed1ef5f8bb10afe72ae8442d035cfdd6f
-
SHA256
dd7f87993993550179c238abfb97c8bf9553b821a069423c4c930cfed8c2de1f
-
SHA512
28d6e90c4bd757aa51ec59d72376ce6e1a1ffd94c2c6f231dbd1b2ec3722bf19366df3a77c3cb9adf03a76177eaa503708df02fad3b5ca76dc74788a863044eb
-
SSDEEP
3072:bhPBd/sROnFQP5yIuSP9lqVinU3bp/PTm2moJ6BwA+GABMndgfaU:bhJdM7PnqVinU3bw2moJ6WAdgy
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-