General
-
Target
7d7cb534764144b9f9d71d1b8a908e74c1049e77bdf65251c7b646bf3b391727
-
Size
275KB
-
Sample
221126-218pbabg58
-
MD5
a04ef23cda6a621fd38ecfd1c2de2384
-
SHA1
a20a78c1c10513aef456d34703731314210d241e
-
SHA256
7d7cb534764144b9f9d71d1b8a908e74c1049e77bdf65251c7b646bf3b391727
-
SHA512
c9ca0c9d857287e2f22248b2a53e0c444cc8b886b10722d065ed6557c381849dc9c967f44f56223f37fd8cce350193358c5b4e2b5260f37a8a8cc385ebb1c0a8
-
SSDEEP
6144:XXjQ8bjPW6po9Hy7iH8LqDuddvmeF9uXkXIqz:njQu7pOWiH8XO2uX+/
Static task
static1
Behavioral task
behavioral1
Sample
7d7cb534764144b9f9d71d1b8a908e74c1049e77bdf65251c7b646bf3b391727.exe
Resource
win7-20221111-en
Behavioral task
behavioral2
Sample
7d7cb534764144b9f9d71d1b8a908e74c1049e77bdf65251c7b646bf3b391727.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
7d7cb534764144b9f9d71d1b8a908e74c1049e77bdf65251c7b646bf3b391727
-
Size
275KB
-
MD5
a04ef23cda6a621fd38ecfd1c2de2384
-
SHA1
a20a78c1c10513aef456d34703731314210d241e
-
SHA256
7d7cb534764144b9f9d71d1b8a908e74c1049e77bdf65251c7b646bf3b391727
-
SHA512
c9ca0c9d857287e2f22248b2a53e0c444cc8b886b10722d065ed6557c381849dc9c967f44f56223f37fd8cce350193358c5b4e2b5260f37a8a8cc385ebb1c0a8
-
SSDEEP
6144:XXjQ8bjPW6po9Hy7iH8LqDuddvmeF9uXkXIqz:njQu7pOWiH8XO2uX+/
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-