General
-
Target
99f0539fa46d95a1e59e3a21fc5f8b8c4eded28af12153129ed8aaa88c6aa37d
-
Size
114KB
-
Sample
221124-1pj15seg3y
-
MD5
96c35c7c7400091b667a05e866ffaaa2
-
SHA1
0b1162c6f335230aed6d9ba7d53b966715c5b2d1
-
SHA256
99f0539fa46d95a1e59e3a21fc5f8b8c4eded28af12153129ed8aaa88c6aa37d
-
SHA512
9d38f9be19a82578bb90669ade4b7dd9e3c999f8f9beb055ffcb6db2da0da1d619be677ab17a0d1b2c83a63c2b502b5f4ef87af0468891c21d9e4069899f0396
-
SSDEEP
1536:hEXXNdOiJcGd+9p70W7hG7K8ftvGpnezu33O0anXhQDD82Fm77777772PKJDYC+c:OqGd+XD7yK3+QvXFm7777777/D1gJ1
Malware Config
Targets
-
-
Target
99f0539fa46d95a1e59e3a21fc5f8b8c4eded28af12153129ed8aaa88c6aa37d
-
Size
114KB
-
MD5
96c35c7c7400091b667a05e866ffaaa2
-
SHA1
0b1162c6f335230aed6d9ba7d53b966715c5b2d1
-
SHA256
99f0539fa46d95a1e59e3a21fc5f8b8c4eded28af12153129ed8aaa88c6aa37d
-
SHA512
9d38f9be19a82578bb90669ade4b7dd9e3c999f8f9beb055ffcb6db2da0da1d619be677ab17a0d1b2c83a63c2b502b5f4ef87af0468891c21d9e4069899f0396
-
SSDEEP
1536:hEXXNdOiJcGd+9p70W7hG7K8ftvGpnezu33O0anXhQDD82Fm77777772PKJDYC+c:OqGd+XD7yK3+QvXFm7777777/D1gJ1
Score8/10-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Deletes itself
-
Loads dropped DLL
-
Adds Run key to start application
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-