General
-
Target
0bcfe293546a8fcb666ba389bb0b9ac7eca8ebba077cc067ef8678921c2213b1
-
Size
169KB
-
Sample
221123-xrj75sfg77
-
MD5
2599b6a960521a31e699d7be199fa13b
-
SHA1
14d7fdc40271c2e29742b677ff17c1601e0f9add
-
SHA256
0bcfe293546a8fcb666ba389bb0b9ac7eca8ebba077cc067ef8678921c2213b1
-
SHA512
81fbde0213fc1ddb4b262b41670bf9bd9e40b0a6d50919efcdee3985c50d1d095a4d2d5687ce5c0a97d6776a4294da6824733f6ee3d5137ac2f2aab8909a8a21
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCm/DERzU3B:gDCwfG1bnxLERI
Malware Config
Targets
-
-
Target
0bcfe293546a8fcb666ba389bb0b9ac7eca8ebba077cc067ef8678921c2213b1
-
Size
169KB
-
MD5
2599b6a960521a31e699d7be199fa13b
-
SHA1
14d7fdc40271c2e29742b677ff17c1601e0f9add
-
SHA256
0bcfe293546a8fcb666ba389bb0b9ac7eca8ebba077cc067ef8678921c2213b1
-
SHA512
81fbde0213fc1ddb4b262b41670bf9bd9e40b0a6d50919efcdee3985c50d1d095a4d2d5687ce5c0a97d6776a4294da6824733f6ee3d5137ac2f2aab8909a8a21
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCm/DERzU3B:gDCwfG1bnxLERI
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-