General
-
Target
5a18ca133176712a2eaf24a600d2a53f494b56b151c290b084553a794fb8615d
-
Size
264KB
-
Sample
221124-akxhkaef83
-
MD5
486d59dbb37a6c13c4deb3bb11b514a0
-
SHA1
92780d7fabf2e5b616ed9f54882599aaee0af27d
-
SHA256
5a18ca133176712a2eaf24a600d2a53f494b56b151c290b084553a794fb8615d
-
SHA512
1ed2b980dc6a5ccc26e4f8e81d80aa1c859d175ec087a19c967ce4a144e9addffd45249f247d8f24841253bcd7e7b44ee300c51ebbed5c7e1e4423580a91caac
-
SSDEEP
6144:P3ziWP8SKE1OmsTluVPHOGiaE9pCvT0wFg:PZ8SKE1OmsTluVliaxbg
Static task
static1
Behavioral task
behavioral1
Sample
5a18ca133176712a2eaf24a600d2a53f494b56b151c290b084553a794fb8615d.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
5a18ca133176712a2eaf24a600d2a53f494b56b151c290b084553a794fb8615d.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
5a18ca133176712a2eaf24a600d2a53f494b56b151c290b084553a794fb8615d
-
Size
264KB
-
MD5
486d59dbb37a6c13c4deb3bb11b514a0
-
SHA1
92780d7fabf2e5b616ed9f54882599aaee0af27d
-
SHA256
5a18ca133176712a2eaf24a600d2a53f494b56b151c290b084553a794fb8615d
-
SHA512
1ed2b980dc6a5ccc26e4f8e81d80aa1c859d175ec087a19c967ce4a144e9addffd45249f247d8f24841253bcd7e7b44ee300c51ebbed5c7e1e4423580a91caac
-
SSDEEP
6144:P3ziWP8SKE1OmsTluVPHOGiaE9pCvT0wFg:PZ8SKE1OmsTluVliaxbg
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-