General
-
Target
11140d50df472860a58b354dbac2445cbb5d121cb90a99c9af9d7350359a7112
-
Size
152KB
-
Sample
221124-akww2aef82
-
MD5
343fc5df63f9b219016e85558fde9130
-
SHA1
c29522ba836f8f6ce9f1a3dfdb32226adadab949
-
SHA256
11140d50df472860a58b354dbac2445cbb5d121cb90a99c9af9d7350359a7112
-
SHA512
d79ed6f8a209d1ecd478b2f6b3e0e3b6020b6ec6cfb248f884de5d76aff46914b8256b988ef8d09beedd83df5fb10dc63bd85512e0fba09f4c4b83fbd6d9848e
-
SSDEEP
3072:khUFgUtTQtKrueiygR4O6avJamofU4oQZiEpZ93:ZgUNQtKSMgR56avUmpW/
Static task
static1
Behavioral task
behavioral1
Sample
11140d50df472860a58b354dbac2445cbb5d121cb90a99c9af9d7350359a7112.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
11140d50df472860a58b354dbac2445cbb5d121cb90a99c9af9d7350359a7112.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
11140d50df472860a58b354dbac2445cbb5d121cb90a99c9af9d7350359a7112
-
Size
152KB
-
MD5
343fc5df63f9b219016e85558fde9130
-
SHA1
c29522ba836f8f6ce9f1a3dfdb32226adadab949
-
SHA256
11140d50df472860a58b354dbac2445cbb5d121cb90a99c9af9d7350359a7112
-
SHA512
d79ed6f8a209d1ecd478b2f6b3e0e3b6020b6ec6cfb248f884de5d76aff46914b8256b988ef8d09beedd83df5fb10dc63bd85512e0fba09f4c4b83fbd6d9848e
-
SSDEEP
3072:khUFgUtTQtKrueiygR4O6avJamofU4oQZiEpZ93:ZgUNQtKSMgR56avUmpW/
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-