General
-
Target
21ba690b0f88cc2005c932fc5698e0083f7ac891e652760d98b495289b9a9426
-
Size
78KB
-
Sample
221128-dqmgbsah39
-
MD5
b8b2e88f5f6a53fc1866104e1fb8a1a0
-
SHA1
068eb8b9a564c23b5fe3089b1be33864d8b3a9bd
-
SHA256
21ba690b0f88cc2005c932fc5698e0083f7ac891e652760d98b495289b9a9426
-
SHA512
005a5372d5dc92cd7aa8cc42c39199b40c2ed362e9fcaa4e495644d58e0c17a79969c42493aa5faf3b474512a9a4125ddb04f84b6717c47b04f46aa8838b9cfe
-
SSDEEP
1536:R1L5+lzXm900BULOZpvtxKPZ7AnUlM+78KOJErw6acC1oY:3LGLu00B1pFxdUlZ78rX65gX
Malware Config
Targets
-
-
Target
21ba690b0f88cc2005c932fc5698e0083f7ac891e652760d98b495289b9a9426
-
Size
78KB
-
MD5
b8b2e88f5f6a53fc1866104e1fb8a1a0
-
SHA1
068eb8b9a564c23b5fe3089b1be33864d8b3a9bd
-
SHA256
21ba690b0f88cc2005c932fc5698e0083f7ac891e652760d98b495289b9a9426
-
SHA512
005a5372d5dc92cd7aa8cc42c39199b40c2ed362e9fcaa4e495644d58e0c17a79969c42493aa5faf3b474512a9a4125ddb04f84b6717c47b04f46aa8838b9cfe
-
SSDEEP
1536:R1L5+lzXm900BULOZpvtxKPZ7AnUlM+78KOJErw6acC1oY:3LGLu00B1pFxdUlZ78rX65gX
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Drops file in System32 directory
-