General
-
Target
962a40135de9d428e5ab40df994734d90048b4ecfb30b2b4c5db88a27513a14a
-
Size
298KB
-
Sample
221125-h9bamaed2s
-
MD5
93caba46f3c5d9aeb9c9fad652a57361
-
SHA1
1473a0d514eae8cf4b829d552817becc5acb586a
-
SHA256
962a40135de9d428e5ab40df994734d90048b4ecfb30b2b4c5db88a27513a14a
-
SHA512
ce48dee408cc1acc25e15c0e9354b1fa35c30e33a12a6b66346dd0a35d2668a05d5f01ed43be2c1709fbe1dce287e57a30fa18a7983a15b96e2461f334c8d922
-
SSDEEP
6144:I7YfIbo3sjP3PN/dfomL4ZPba/Oauy26UjD5uL:I7tbSsD31FxCevpzUjD5uL
Malware Config
Targets
-
-
Target
962a40135de9d428e5ab40df994734d90048b4ecfb30b2b4c5db88a27513a14a
-
Size
298KB
-
MD5
93caba46f3c5d9aeb9c9fad652a57361
-
SHA1
1473a0d514eae8cf4b829d552817becc5acb586a
-
SHA256
962a40135de9d428e5ab40df994734d90048b4ecfb30b2b4c5db88a27513a14a
-
SHA512
ce48dee408cc1acc25e15c0e9354b1fa35c30e33a12a6b66346dd0a35d2668a05d5f01ed43be2c1709fbe1dce287e57a30fa18a7983a15b96e2461f334c8d922
-
SSDEEP
6144:I7YfIbo3sjP3PN/dfomL4ZPba/Oauy26UjD5uL:I7tbSsD31FxCevpzUjD5uL
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Checks for any installed AV software in registry
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-