General
-
Target
bf0c00dfa8272340f3516e78516d8c6e9ea796777031e884c746e602b80b04e9
-
Size
176KB
-
Sample
221124-al32qseg67
-
MD5
26f91937d7f3eb1376fe721af82a9fe0
-
SHA1
848bd0fa61ab6340b804b42c233c76de4d7441d9
-
SHA256
bf0c00dfa8272340f3516e78516d8c6e9ea796777031e884c746e602b80b04e9
-
SHA512
ddb18a392547c3b4ededbf3e263f8b9a2782845a577bbf9fe10d9744807cb296d2bd126b03f86e1e7739d34de32427774e4411cf430ac15902650f6459c10a7b
-
SSDEEP
3072:df04IcfpHlp1D2KcwjIU2aTObcpT/pHkEAbN/yK/fObT/bGiCV/COqoSQ1iBuAZI:904PfpHlp1KKcwjIDaTObcZ/pHkMK/fn
Malware Config
Targets
-
-
Target
bf0c00dfa8272340f3516e78516d8c6e9ea796777031e884c746e602b80b04e9
-
Size
176KB
-
MD5
26f91937d7f3eb1376fe721af82a9fe0
-
SHA1
848bd0fa61ab6340b804b42c233c76de4d7441d9
-
SHA256
bf0c00dfa8272340f3516e78516d8c6e9ea796777031e884c746e602b80b04e9
-
SHA512
ddb18a392547c3b4ededbf3e263f8b9a2782845a577bbf9fe10d9744807cb296d2bd126b03f86e1e7739d34de32427774e4411cf430ac15902650f6459c10a7b
-
SSDEEP
3072:df04IcfpHlp1D2KcwjIU2aTObcpT/pHkEAbN/yK/fObT/bGiCV/COqoSQ1iBuAZI:904PfpHlp1KKcwjIDaTObcZ/pHkMK/fn
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-