General
-
Target
f72324e0c03f36d204bfbc5d33c783bddc7f28a03fddd27192abf0296fa001c4
-
Size
272KB
-
Sample
221123-xjpgwsab51
-
MD5
52a18a1c04ac667ee2fad51a5d5dc6a0
-
SHA1
9504960e51a7eff2eadf5f7bee8d5dc6edc3b808
-
SHA256
f72324e0c03f36d204bfbc5d33c783bddc7f28a03fddd27192abf0296fa001c4
-
SHA512
34a53fcfccbeaae5c5bad2ab9712fb9087b2cae217d004563f61b8bf41480ff602977e9138b0b9880cbdafa039be44f59a103c7d7445f129b3173826937d9994
-
SSDEEP
3072:r4J9gmss0FvbVJznCRcz/hVFA9MSs/PLLj+Qm4U3YwgTeA3yH:kIvbfznH7O9G/PLLxU3YwgT
Malware Config
Targets
-
-
Target
f72324e0c03f36d204bfbc5d33c783bddc7f28a03fddd27192abf0296fa001c4
-
Size
272KB
-
MD5
52a18a1c04ac667ee2fad51a5d5dc6a0
-
SHA1
9504960e51a7eff2eadf5f7bee8d5dc6edc3b808
-
SHA256
f72324e0c03f36d204bfbc5d33c783bddc7f28a03fddd27192abf0296fa001c4
-
SHA512
34a53fcfccbeaae5c5bad2ab9712fb9087b2cae217d004563f61b8bf41480ff602977e9138b0b9880cbdafa039be44f59a103c7d7445f129b3173826937d9994
-
SSDEEP
3072:r4J9gmss0FvbVJznCRcz/hVFA9MSs/PLLj+Qm4U3YwgTeA3yH:kIvbfznH7O9G/PLLxU3YwgT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-