General
-
Target
3d6bd723fe911b63cee9e4d297fa2f1d7093aa42ee10c0652b187f1ef3689f9e
-
Size
115KB
-
Sample
221125-c2cktseh37
-
MD5
52417cc7f18fc3cebf30a3f9bc4c780a
-
SHA1
610d4402202b5222c53f21d5945b4ed21a10759a
-
SHA256
3d6bd723fe911b63cee9e4d297fa2f1d7093aa42ee10c0652b187f1ef3689f9e
-
SHA512
47d5706609e5e5c9cca528d66c02f39bdd0de7baf1a8931f0d6709eed177b9ac69dadfb48563e19b2bc6d7062ff08981731d49ad9335dbc22bea278b11b53bc5
-
SSDEEP
1536:4/vnjIq7S/rkNjFx6M3j883ADnSBSbxucF2/p3OxMAHoliTHv9KZIASIi:mv9WTkNjFx6MT8gAWBS1v3ol+Hg
Static task
static1
Behavioral task
behavioral1
Sample
3d6bd723fe911b63cee9e4d297fa2f1d7093aa42ee10c0652b187f1ef3689f9e.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
3d6bd723fe911b63cee9e4d297fa2f1d7093aa42ee10c0652b187f1ef3689f9e.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
3d6bd723fe911b63cee9e4d297fa2f1d7093aa42ee10c0652b187f1ef3689f9e
-
Size
115KB
-
MD5
52417cc7f18fc3cebf30a3f9bc4c780a
-
SHA1
610d4402202b5222c53f21d5945b4ed21a10759a
-
SHA256
3d6bd723fe911b63cee9e4d297fa2f1d7093aa42ee10c0652b187f1ef3689f9e
-
SHA512
47d5706609e5e5c9cca528d66c02f39bdd0de7baf1a8931f0d6709eed177b9ac69dadfb48563e19b2bc6d7062ff08981731d49ad9335dbc22bea278b11b53bc5
-
SSDEEP
1536:4/vnjIq7S/rkNjFx6M3j883ADnSBSbxucF2/p3OxMAHoliTHv9KZIASIi:mv9WTkNjFx6MT8gAWBS1v3ol+Hg
Score8/10-
Executes dropped EXE
-
Modifies Installed Components in the registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-