General
-
Target
a56eebd04e0176a36775c0f9644e786c5c30576e1ed36ef989214081bb111f12
-
Size
84KB
-
Sample
221124-f53g7seg9x
-
MD5
0ae04f2e6d3dd30f65baed0d0869d7b4
-
SHA1
1c95880e934fce5cbeb8453059cb082c860b738a
-
SHA256
a56eebd04e0176a36775c0f9644e786c5c30576e1ed36ef989214081bb111f12
-
SHA512
3c7605d462c3cee67f9aa72fdd13073da823bead4de5bddc1cbdf719f133c851d52b99b17a7c4fa2eaddab39cb925c745a734ce04d8b6d99a044ca27c9d1b81a
-
SSDEEP
768:DyV+hOvogEwzpbgJyGE5NIWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7Al+:DoFv9p1rC76Ezh/vYlJwAitTB3l+
Malware Config
Targets
-
-
Target
a56eebd04e0176a36775c0f9644e786c5c30576e1ed36ef989214081bb111f12
-
Size
84KB
-
MD5
0ae04f2e6d3dd30f65baed0d0869d7b4
-
SHA1
1c95880e934fce5cbeb8453059cb082c860b738a
-
SHA256
a56eebd04e0176a36775c0f9644e786c5c30576e1ed36ef989214081bb111f12
-
SHA512
3c7605d462c3cee67f9aa72fdd13073da823bead4de5bddc1cbdf719f133c851d52b99b17a7c4fa2eaddab39cb925c745a734ce04d8b6d99a044ca27c9d1b81a
-
SSDEEP
768:DyV+hOvogEwzpbgJyGE5NIWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7Al+:DoFv9p1rC76Ezh/vYlJwAitTB3l+
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-