General
-
Target
9273db8f77a2e9efbc7af98c5b45489d466ffc3003b4a2412f71196f06168dbb
-
Size
816KB
-
Sample
221126-3dxh7scf86
-
MD5
c7e0ea419d706b17c546f2165616db01
-
SHA1
ea2f53f39b43844e356fca1e07594603a2634fcd
-
SHA256
9273db8f77a2e9efbc7af98c5b45489d466ffc3003b4a2412f71196f06168dbb
-
SHA512
b013abb1e117788f9191731ab6eeec202e8bcc4e36188ac5eab2217d51b3eb3ebf4bd95a8a12aea154ce0f6e325f9c78be93b936106e6d7d2cc41d8c2146d15c
-
SSDEEP
24576:Qp9M/ULsy3KihysUYYYYYYYYYYYRYYYYYYYYYYv:7/qsL0yvYYYYYYYYYYYRYYYYYYYYYYv
Static task
static1
Behavioral task
behavioral1
Sample
9273db8f77a2e9efbc7af98c5b45489d466ffc3003b4a2412f71196f06168dbb.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
9273db8f77a2e9efbc7af98c5b45489d466ffc3003b4a2412f71196f06168dbb.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
9273db8f77a2e9efbc7af98c5b45489d466ffc3003b4a2412f71196f06168dbb
-
Size
816KB
-
MD5
c7e0ea419d706b17c546f2165616db01
-
SHA1
ea2f53f39b43844e356fca1e07594603a2634fcd
-
SHA256
9273db8f77a2e9efbc7af98c5b45489d466ffc3003b4a2412f71196f06168dbb
-
SHA512
b013abb1e117788f9191731ab6eeec202e8bcc4e36188ac5eab2217d51b3eb3ebf4bd95a8a12aea154ce0f6e325f9c78be93b936106e6d7d2cc41d8c2146d15c
-
SSDEEP
24576:Qp9M/ULsy3KihysUYYYYYYYYYYYRYYYYYYYYYYv:7/qsL0yvYYYYYYYYYYYRYYYYYYYYYYv
Score10/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-