General
-
Target
596ab1a1f7d50a65aa7f608a9305e419f4cf8115f8b50559900512ba18d9d874
-
Size
1.2MB
-
Sample
221126-felf1aga9s
-
MD5
02c0b8b0987037a1a69a60ab28f448aa
-
SHA1
6cdfd4eaec28c5ab2c8f42e7daf1289aeaa461cf
-
SHA256
596ab1a1f7d50a65aa7f608a9305e419f4cf8115f8b50559900512ba18d9d874
-
SHA512
28877adaabe32465cb567e9c31d2cc25ed06d7854761c522abba1d0ce48453c896b4a311a7f9a8f6c420dbbc986f71d64e5330e806570883f014caaf05c9dd1d
-
SSDEEP
24576:uZeZdWCFhod4oBOLA0IhJdEbYVVnmV+nOJ84wSBTsBbylk+k8ir:uZeZd7FGqoBOLATabYG+u87lWk+Qr
Malware Config
Targets
-
-
Target
596ab1a1f7d50a65aa7f608a9305e419f4cf8115f8b50559900512ba18d9d874
-
Size
1.2MB
-
MD5
02c0b8b0987037a1a69a60ab28f448aa
-
SHA1
6cdfd4eaec28c5ab2c8f42e7daf1289aeaa461cf
-
SHA256
596ab1a1f7d50a65aa7f608a9305e419f4cf8115f8b50559900512ba18d9d874
-
SHA512
28877adaabe32465cb567e9c31d2cc25ed06d7854761c522abba1d0ce48453c896b4a311a7f9a8f6c420dbbc986f71d64e5330e806570883f014caaf05c9dd1d
-
SSDEEP
24576:uZeZdWCFhod4oBOLA0IhJdEbYVVnmV+nOJ84wSBTsBbylk+k8ir:uZeZd7FGqoBOLATabYG+u87lWk+Qr
Score8/10-
Executes dropped EXE
-
VMProtect packed file
Detects executables packed with VMProtect commercial packer.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-