General
-
Target
def365ceb940194df5ad51a76c02e2cf4e6f3dba24353347edb5f3fa58d62b53
-
Size
8.5MB
-
Sample
221124-rwdy2aaf78
-
MD5
663e2e8897e764c6853d936e6be2243b
-
SHA1
b19d36acab4474af88e3316d3afb71ad2a9b91f9
-
SHA256
def365ceb940194df5ad51a76c02e2cf4e6f3dba24353347edb5f3fa58d62b53
-
SHA512
07fef6d438fd0287243aea945a02f9fb8fe57f983f9351e4f758c48bf65ec3b691521143d87ab7501828a97ae8a2bac682b7688dbd06ad58f8c66e3e5a783369
-
SSDEEP
196608:nSX0XZV9sWoOB0zaHfqa6leXKdhHSklX06F9ZyBSXPgoSbuJAW8:nSkzZ2za/N+eX+H5Xx9Z6SopAAW8
Malware Config
Targets
-
-
Target
def365ceb940194df5ad51a76c02e2cf4e6f3dba24353347edb5f3fa58d62b53
-
Size
8.5MB
-
MD5
663e2e8897e764c6853d936e6be2243b
-
SHA1
b19d36acab4474af88e3316d3afb71ad2a9b91f9
-
SHA256
def365ceb940194df5ad51a76c02e2cf4e6f3dba24353347edb5f3fa58d62b53
-
SHA512
07fef6d438fd0287243aea945a02f9fb8fe57f983f9351e4f758c48bf65ec3b691521143d87ab7501828a97ae8a2bac682b7688dbd06ad58f8c66e3e5a783369
-
SSDEEP
196608:nSX0XZV9sWoOB0zaHfqa6leXKdhHSklX06F9ZyBSXPgoSbuJAW8:nSkzZ2za/N+eX+H5Xx9Z6SopAAW8
Score8/10-
Executes dropped EXE
-
Modifies AppInit DLL entries
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-