General
-
Target
4de875be9247431acbc6388d427da8993843b0b89094a7825696935b875d22eb
-
Size
301KB
-
Sample
221127-tml96aec8t
-
MD5
2e7cd2f7f5fbd0840bc41d4ea1bb20d2
-
SHA1
2f4dda5a7818817610a2e5b74f3f4b87dba59fa6
-
SHA256
4de875be9247431acbc6388d427da8993843b0b89094a7825696935b875d22eb
-
SHA512
4a9a21f9c6a0381f781a0e8bccdd3e7336d40c0c0790d9764fae006964f0a554e17e2e13868fb13602f1a265d9785dc8d8479ece3fdb320d130cadf07ab98ec5
-
SSDEEP
6144:PX67o2eiEsOmN+MC5+0tWHccB/kIie0K+evGPMbyJqm:CrPdN25+0t+BcC02GPwwq
Static task
static1
Behavioral task
behavioral1
Sample
4de875be9247431acbc6388d427da8993843b0b89094a7825696935b875d22eb.exe
Resource
win7-20220901-en
Behavioral task
behavioral2
Sample
4de875be9247431acbc6388d427da8993843b0b89094a7825696935b875d22eb.exe
Resource
win10v2004-20220812-en
Malware Config
Targets
-
-
Target
4de875be9247431acbc6388d427da8993843b0b89094a7825696935b875d22eb
-
Size
301KB
-
MD5
2e7cd2f7f5fbd0840bc41d4ea1bb20d2
-
SHA1
2f4dda5a7818817610a2e5b74f3f4b87dba59fa6
-
SHA256
4de875be9247431acbc6388d427da8993843b0b89094a7825696935b875d22eb
-
SHA512
4a9a21f9c6a0381f781a0e8bccdd3e7336d40c0c0790d9764fae006964f0a554e17e2e13868fb13602f1a265d9785dc8d8479ece3fdb320d130cadf07ab98ec5
-
SSDEEP
6144:PX67o2eiEsOmN+MC5+0tWHccB/kIie0K+evGPMbyJqm:CrPdN25+0t+BcC02GPwwq
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-