General
-
Target
3fceca06b23324873f12b745a349bdff3567850f40687786c4e4f0aa789efe03
-
Size
131KB
-
Sample
221125-jwcf7sga5t
-
MD5
7172970c5f7feaeefea7dce05c77ec99
-
SHA1
d54ab0a54b0eea89ab205f4eefa3455129a3fcd9
-
SHA256
3fceca06b23324873f12b745a349bdff3567850f40687786c4e4f0aa789efe03
-
SHA512
2140f2fe551c1ec6409d6ccf292e9db02f89ac927d3f706925ed7143df73fe04c3e4ab0759125fd22702e62b1b46b0827168ed4716371b873a9ed2176898ff34
-
SSDEEP
1536:0ypZ/A6HjKnbI66LazSel7tRW03TU4+DW8U2qdbsAqO+064RPT515KE6:bqjnbI7OBYwT+DWZsD0bTT
Behavioral task
behavioral1
Sample
3fceca06b23324873f12b745a349bdff3567850f40687786c4e4f0aa789efe03.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
3fceca06b23324873f12b745a349bdff3567850f40687786c4e4f0aa789efe03.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
3fceca06b23324873f12b745a349bdff3567850f40687786c4e4f0aa789efe03
-
Size
131KB
-
MD5
7172970c5f7feaeefea7dce05c77ec99
-
SHA1
d54ab0a54b0eea89ab205f4eefa3455129a3fcd9
-
SHA256
3fceca06b23324873f12b745a349bdff3567850f40687786c4e4f0aa789efe03
-
SHA512
2140f2fe551c1ec6409d6ccf292e9db02f89ac927d3f706925ed7143df73fe04c3e4ab0759125fd22702e62b1b46b0827168ed4716371b873a9ed2176898ff34
-
SSDEEP
1536:0ypZ/A6HjKnbI66LazSel7tRW03TU4+DW8U2qdbsAqO+064RPT515KE6:bqjnbI7OBYwT+DWZsD0bTT
Score10/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-