General
-
Target
2a7b556bf71db49e09a5653b46174e18cb852135a8b5e00afd1c68e6f01daa6e
-
Size
502KB
-
Sample
221124-n69xnsfd5s
-
MD5
35413d04f0e70135e7d6b8d48f7569d7
-
SHA1
067b82d245a02c84b7fe1ff87c46049371771510
-
SHA256
2a7b556bf71db49e09a5653b46174e18cb852135a8b5e00afd1c68e6f01daa6e
-
SHA512
47ac67c30192a87db1010b26fa4ca485f87026f9eae2cf231f34eb50a23991e8333a23617e4fc20a43c62f22ed96469b95fdfbfe7985191ec04062780dc598e5
-
SSDEEP
12288:fXDluOS3La33x7NFNrwTN34/OTHrMKyXQSm1U8RM:f3VzmI/OTLMVEu
Static task
static1
Behavioral task
behavioral1
Sample
2a7b556bf71db49e09a5653b46174e18cb852135a8b5e00afd1c68e6f01daa6e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
2a7b556bf71db49e09a5653b46174e18cb852135a8b5e00afd1c68e6f01daa6e.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
2a7b556bf71db49e09a5653b46174e18cb852135a8b5e00afd1c68e6f01daa6e
-
Size
502KB
-
MD5
35413d04f0e70135e7d6b8d48f7569d7
-
SHA1
067b82d245a02c84b7fe1ff87c46049371771510
-
SHA256
2a7b556bf71db49e09a5653b46174e18cb852135a8b5e00afd1c68e6f01daa6e
-
SHA512
47ac67c30192a87db1010b26fa4ca485f87026f9eae2cf231f34eb50a23991e8333a23617e4fc20a43c62f22ed96469b95fdfbfe7985191ec04062780dc598e5
-
SSDEEP
12288:fXDluOS3La33x7NFNrwTN34/OTHrMKyXQSm1U8RM:f3VzmI/OTLMVEu
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-