General
-
Target
db51b72a02b5c5d11e15c1a30a8e45b5390c82939621d336e2fb3401438222ad
-
Size
8.5MB
-
Sample
221124-rwfgvsaf82
-
MD5
9cb2d3290db3855f8453c75761932e29
-
SHA1
d0991476007d5f0dd45e93a956246454d7138783
-
SHA256
db51b72a02b5c5d11e15c1a30a8e45b5390c82939621d336e2fb3401438222ad
-
SHA512
05c2056d9ccbdee7445b12ef120bab0c57031988a3ee1000fc93166ff2097e15eb15349b8554e0969a734c88eca8d6fc2392d18984fb49d3c69d320e5e8f414f
-
SSDEEP
196608:hSX0XZV9sWoOB0zaHfqa6leXKdhHSklX06F9ZyBSXPgoSbuJAWk:hSkzZ2za/N+eX+H5Xx9Z6SopAAWk
Malware Config
Targets
-
-
Target
db51b72a02b5c5d11e15c1a30a8e45b5390c82939621d336e2fb3401438222ad
-
Size
8.5MB
-
MD5
9cb2d3290db3855f8453c75761932e29
-
SHA1
d0991476007d5f0dd45e93a956246454d7138783
-
SHA256
db51b72a02b5c5d11e15c1a30a8e45b5390c82939621d336e2fb3401438222ad
-
SHA512
05c2056d9ccbdee7445b12ef120bab0c57031988a3ee1000fc93166ff2097e15eb15349b8554e0969a734c88eca8d6fc2392d18984fb49d3c69d320e5e8f414f
-
SSDEEP
196608:hSX0XZV9sWoOB0zaHfqa6leXKdhHSklX06F9ZyBSXPgoSbuJAWk:hSkzZ2za/N+eX+H5Xx9Z6SopAAWk
Score8/10-
Executes dropped EXE
-
Modifies AppInit DLL entries
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-