General
-
Target
8111bde9cc4c8dcaa55ac80ec25e6005a2569cbb4d7505e2ade63975246086f7
-
Size
522KB
-
Sample
221124-pg7lpagb2x
-
MD5
ef7cc0535a6beaa11c0a91de39a7f38a
-
SHA1
452c74644f41833f5bf6b3fc00912c6e86664c96
-
SHA256
8111bde9cc4c8dcaa55ac80ec25e6005a2569cbb4d7505e2ade63975246086f7
-
SHA512
f7968c4d3b905d059dd27d427a82d7c37beedff1156b9536c7b72a429956662910379352f3bfa61268c21aea2e11b42d98f3d3b52ffa6be256c0d923e4b4f2e9
-
SSDEEP
12288:G9OtFU8hg3kCnbfXJ723I5uajRamxhzMBl6tYw/MtRA:NDU82vz1MsdhwH6cE
Malware Config
Targets
-
-
Target
8111bde9cc4c8dcaa55ac80ec25e6005a2569cbb4d7505e2ade63975246086f7
-
Size
522KB
-
MD5
ef7cc0535a6beaa11c0a91de39a7f38a
-
SHA1
452c74644f41833f5bf6b3fc00912c6e86664c96
-
SHA256
8111bde9cc4c8dcaa55ac80ec25e6005a2569cbb4d7505e2ade63975246086f7
-
SHA512
f7968c4d3b905d059dd27d427a82d7c37beedff1156b9536c7b72a429956662910379352f3bfa61268c21aea2e11b42d98f3d3b52ffa6be256c0d923e4b4f2e9
-
SSDEEP
12288:G9OtFU8hg3kCnbfXJ723I5uajRamxhzMBl6tYw/MtRA:NDU82vz1MsdhwH6cE
Score8/10-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-