General
-
Target
1b720c4ff748f45b527cd8a6b41b560c2514106492bc7867fd361be0eab9ce65
-
Size
152KB
-
Sample
221124-aj8t7sef43
-
MD5
34a8816d73167010d0a2a066ca51da30
-
SHA1
84f4fc8bd272965d0b831c8b5f5aebe01a2401bb
-
SHA256
1b720c4ff748f45b527cd8a6b41b560c2514106492bc7867fd361be0eab9ce65
-
SHA512
1bc40d63988ea7ab3afcb42afd23c7490d275a5f35557838076611d3a72ab289badb7a7341d0c39ee3932a339a5eb71431fc4a18f1b47b75a7a35616f9dfb062
-
SSDEEP
3072:H3skvl3Po5+tTjFqV+t3DRGCKBiAKN4oQZiEue:VQ5+t8+NDR5AWW9
Malware Config
Targets
-
-
Target
1b720c4ff748f45b527cd8a6b41b560c2514106492bc7867fd361be0eab9ce65
-
Size
152KB
-
MD5
34a8816d73167010d0a2a066ca51da30
-
SHA1
84f4fc8bd272965d0b831c8b5f5aebe01a2401bb
-
SHA256
1b720c4ff748f45b527cd8a6b41b560c2514106492bc7867fd361be0eab9ce65
-
SHA512
1bc40d63988ea7ab3afcb42afd23c7490d275a5f35557838076611d3a72ab289badb7a7341d0c39ee3932a339a5eb71431fc4a18f1b47b75a7a35616f9dfb062
-
SSDEEP
3072:H3skvl3Po5+tTjFqV+t3DRGCKBiAKN4oQZiEue:VQ5+t8+NDR5AWW9
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-