General
-
Target
f222ba86ff456684216a177d7985af5d55139246327b4850673fd50338ad153f
-
Size
280KB
-
Sample
221124-apa55aab5t
-
MD5
3a5fd5049b6b48161f0aed543f0fa790
-
SHA1
c4d720489fadd1964bab0269dce0cd25a02bb2eb
-
SHA256
f222ba86ff456684216a177d7985af5d55139246327b4850673fd50338ad153f
-
SHA512
86a735f6b196ac54042ffa4bd0ca021b376d3d024c76ccae5d530c5947a193e6ec92e044ae46b3ca84fea2268759cbbd3f927af6d3b6bd555d086889fe194fa7
-
SSDEEP
6144:5tcWOyEhFtHt3whCzk865CPTWyWisLorP5D:5azyEhFtHt3whCzk865CPTbe0P5D
Malware Config
Targets
-
-
Target
f222ba86ff456684216a177d7985af5d55139246327b4850673fd50338ad153f
-
Size
280KB
-
MD5
3a5fd5049b6b48161f0aed543f0fa790
-
SHA1
c4d720489fadd1964bab0269dce0cd25a02bb2eb
-
SHA256
f222ba86ff456684216a177d7985af5d55139246327b4850673fd50338ad153f
-
SHA512
86a735f6b196ac54042ffa4bd0ca021b376d3d024c76ccae5d530c5947a193e6ec92e044ae46b3ca84fea2268759cbbd3f927af6d3b6bd555d086889fe194fa7
-
SSDEEP
6144:5tcWOyEhFtHt3whCzk865CPTWyWisLorP5D:5azyEhFtHt3whCzk865CPTbe0P5D
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-