General
-
Target
91b8b6b051747f5b82938266f08d6f9997234dc862812e0f3c614a40d742ad2f
-
Size
40KB
-
Sample
221126-cqyc6ahe5z
-
MD5
6f43b1b5ee9d92ca734d6c4cf08abd2c
-
SHA1
35b1f8cc824556fb69b730d252a0e68d9c200f5e
-
SHA256
91b8b6b051747f5b82938266f08d6f9997234dc862812e0f3c614a40d742ad2f
-
SHA512
1a56d3879b46751a7afb13306425f00c4c4f2727967a44c39cfb1c24dcf63eff8e59b8478d2ea904f7d343da393d2fb9ed3ad9d3a1d69df6cc8c0c26c6b9b62c
-
SSDEEP
768:IV0Hsb1wVDDcG2tXpk6PP7+JLdHXGHljCOecAH2CZvc:IC5cG2Q6X7+JpIXRjAvc
Malware Config
Targets
-
-
Target
91b8b6b051747f5b82938266f08d6f9997234dc862812e0f3c614a40d742ad2f
-
Size
40KB
-
MD5
6f43b1b5ee9d92ca734d6c4cf08abd2c
-
SHA1
35b1f8cc824556fb69b730d252a0e68d9c200f5e
-
SHA256
91b8b6b051747f5b82938266f08d6f9997234dc862812e0f3c614a40d742ad2f
-
SHA512
1a56d3879b46751a7afb13306425f00c4c4f2727967a44c39cfb1c24dcf63eff8e59b8478d2ea904f7d343da393d2fb9ed3ad9d3a1d69df6cc8c0c26c6b9b62c
-
SSDEEP
768:IV0Hsb1wVDDcG2tXpk6PP7+JLdHXGHljCOecAH2CZvc:IC5cG2Q6X7+JpIXRjAvc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-