General
-
Target
be5893773804f9097891372136300b701fe87b13218dc1042d919c6357e0fe43
-
Size
388KB
-
Sample
221124-bckz8sgf82
-
MD5
5675376d08c87c70f8b557280c8aae0e
-
SHA1
ff769308f1d70bb31274e33b7e80cd3a0f2d528a
-
SHA256
be5893773804f9097891372136300b701fe87b13218dc1042d919c6357e0fe43
-
SHA512
46b7ce14b28521adf8053813e95c2a7c34e29996fe0e69e1f4547426195fc8d4c8d6075181c293c3156a6a1ec2b41febd49a00807f06d8fff5b94548b3bd2078
-
SSDEEP
6144:UMbELf/MJ8cWdi5pV/JNWOVhMSvk/Ziuv:edOpNX1hjvt
Malware Config
Targets
-
-
Target
be5893773804f9097891372136300b701fe87b13218dc1042d919c6357e0fe43
-
Size
388KB
-
MD5
5675376d08c87c70f8b557280c8aae0e
-
SHA1
ff769308f1d70bb31274e33b7e80cd3a0f2d528a
-
SHA256
be5893773804f9097891372136300b701fe87b13218dc1042d919c6357e0fe43
-
SHA512
46b7ce14b28521adf8053813e95c2a7c34e29996fe0e69e1f4547426195fc8d4c8d6075181c293c3156a6a1ec2b41febd49a00807f06d8fff5b94548b3bd2078
-
SSDEEP
6144:UMbELf/MJ8cWdi5pV/JNWOVhMSvk/Ziuv:edOpNX1hjvt
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-