General
-
Target
9c5b17c0ee8b0a236621f0e34a66328f008db54085945237b3b386fa88c89aa7
-
Size
152KB
-
Sample
221124-akwahaef79
-
MD5
1b1942d35743ff03a6d28f220604d343
-
SHA1
d01d180a4170571fc9384a86e552d18d5d76d36d
-
SHA256
9c5b17c0ee8b0a236621f0e34a66328f008db54085945237b3b386fa88c89aa7
-
SHA512
8897ab430c448f12261355a6eab6ae2c79e2c06addb33d13feeb405468341ae32406cb447178d9cf2821472444b49f0630b8509cc8dd9f02c4778859384ba8c7
-
SSDEEP
3072:9hUFgNTQtKrueiygR4O6avJamofZ4oQZiEgqB:SgtQtKSMgR56avUm2WGU
Malware Config
Targets
-
-
Target
9c5b17c0ee8b0a236621f0e34a66328f008db54085945237b3b386fa88c89aa7
-
Size
152KB
-
MD5
1b1942d35743ff03a6d28f220604d343
-
SHA1
d01d180a4170571fc9384a86e552d18d5d76d36d
-
SHA256
9c5b17c0ee8b0a236621f0e34a66328f008db54085945237b3b386fa88c89aa7
-
SHA512
8897ab430c448f12261355a6eab6ae2c79e2c06addb33d13feeb405468341ae32406cb447178d9cf2821472444b49f0630b8509cc8dd9f02c4778859384ba8c7
-
SSDEEP
3072:9hUFgNTQtKrueiygR4O6avJamofZ4oQZiEgqB:SgtQtKSMgR56avUm2WGU
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-