General
-
Target
31a63041e34dad51af264b03b29c95e38b0a5d3401e4a824a96ddc60e9525313
-
Size
132KB
-
Sample
221124-agb3fshf4v
-
MD5
35634fa1e42090b1a70fca30978bf170
-
SHA1
342a6840b5a598547001441d1d47700b30df1306
-
SHA256
31a63041e34dad51af264b03b29c95e38b0a5d3401e4a824a96ddc60e9525313
-
SHA512
a48bcfba32d705f63cfc772fa152692d69a5c3269aeda0c3b7f275cdff246f107dfc67987a173424e97f8fed0e3e33e60a6f374ee593b57593df0e91310e421d
-
SSDEEP
1536:44rhGHRX+spSx6jPdVIslKddW9qypu2ddxjpYwiAq4JqASswN6dWBsg/5vpi7Bg4:4oIus4x6rd6YIeJjqP4yswNiqni7a2N
Malware Config
Targets
-
-
Target
31a63041e34dad51af264b03b29c95e38b0a5d3401e4a824a96ddc60e9525313
-
Size
132KB
-
MD5
35634fa1e42090b1a70fca30978bf170
-
SHA1
342a6840b5a598547001441d1d47700b30df1306
-
SHA256
31a63041e34dad51af264b03b29c95e38b0a5d3401e4a824a96ddc60e9525313
-
SHA512
a48bcfba32d705f63cfc772fa152692d69a5c3269aeda0c3b7f275cdff246f107dfc67987a173424e97f8fed0e3e33e60a6f374ee593b57593df0e91310e421d
-
SSDEEP
1536:44rhGHRX+spSx6jPdVIslKddW9qypu2ddxjpYwiAq4JqASswN6dWBsg/5vpi7Bg4:4oIus4x6rd6YIeJjqP4yswNiqni7a2N
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-