General
-
Target
8e39aa87b8fd60418114cf10d809121e41e8d7a179bef823ea5e0d1b132be0a2
-
Size
586KB
-
Sample
221127-jvr59seh5s
-
MD5
9a6a4fd08a7a2b287f5a4fad540be0da
-
SHA1
e65cdb5e489e636fa9ce5f5557e5dde1843b7a71
-
SHA256
8e39aa87b8fd60418114cf10d809121e41e8d7a179bef823ea5e0d1b132be0a2
-
SHA512
6a61c6f35c460fe6d19ac0aa4a5e94f7507e1bc7bf1126aee67d824888c27390692dfe6afaba78f1b70418398ac7619e3a7448341e836011a0661944f9f280dd
-
SSDEEP
12288:mJhDimZkrr7i37gz5iVwxrT/3ZUxsWZTewowqynIxj:ILZk/7Q8ttV73ZUxp4wowqyC
Static task
static1
Behavioral task
behavioral1
Sample
8e39aa87b8fd60418114cf10d809121e41e8d7a179bef823ea5e0d1b132be0a2.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
8e39aa87b8fd60418114cf10d809121e41e8d7a179bef823ea5e0d1b132be0a2.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
8e39aa87b8fd60418114cf10d809121e41e8d7a179bef823ea5e0d1b132be0a2
-
Size
586KB
-
MD5
9a6a4fd08a7a2b287f5a4fad540be0da
-
SHA1
e65cdb5e489e636fa9ce5f5557e5dde1843b7a71
-
SHA256
8e39aa87b8fd60418114cf10d809121e41e8d7a179bef823ea5e0d1b132be0a2
-
SHA512
6a61c6f35c460fe6d19ac0aa4a5e94f7507e1bc7bf1126aee67d824888c27390692dfe6afaba78f1b70418398ac7619e3a7448341e836011a0661944f9f280dd
-
SSDEEP
12288:mJhDimZkrr7i37gz5iVwxrT/3ZUxsWZTewowqynIxj:ILZk/7Q8ttV73ZUxp4wowqyC
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-