General
-
Target
0f059ba1a32550d2ff589b301e216817d3195b957bfc8cc3d38c2c7bac4a0231
-
Size
132KB
-
Sample
221123-xq5sfsag4t
-
MD5
597587f5a1ef252a6b6e23a1dc8dbfe0
-
SHA1
bae291bfdd8ee0199024f9c0bb3765a029a80103
-
SHA256
0f059ba1a32550d2ff589b301e216817d3195b957bfc8cc3d38c2c7bac4a0231
-
SHA512
28f08ec66e35197fedeeec8002593738be62c5b9c86caef897643fd9dbd76d5081e75b8c4d80b0063a983da638c494a1325fbfff143d4bc2eb27ef3ffb5c2c33
-
SSDEEP
3072:fanf/b6NUf6VRlxzhPak8LXo46sBizQiOku:4/biUSVPxNPaLLXoNii8iC
Static task
static1
Behavioral task
behavioral1
Sample
0f059ba1a32550d2ff589b301e216817d3195b957bfc8cc3d38c2c7bac4a0231.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
0f059ba1a32550d2ff589b301e216817d3195b957bfc8cc3d38c2c7bac4a0231.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
0f059ba1a32550d2ff589b301e216817d3195b957bfc8cc3d38c2c7bac4a0231
-
Size
132KB
-
MD5
597587f5a1ef252a6b6e23a1dc8dbfe0
-
SHA1
bae291bfdd8ee0199024f9c0bb3765a029a80103
-
SHA256
0f059ba1a32550d2ff589b301e216817d3195b957bfc8cc3d38c2c7bac4a0231
-
SHA512
28f08ec66e35197fedeeec8002593738be62c5b9c86caef897643fd9dbd76d5081e75b8c4d80b0063a983da638c494a1325fbfff143d4bc2eb27ef3ffb5c2c33
-
SSDEEP
3072:fanf/b6NUf6VRlxzhPak8LXo46sBizQiOku:4/biUSVPxNPaLLXoNii8iC
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-