General
-
Target
e0207a9257e33ccd5fa9816be1c47628b69e61ce7d83880434005dbd9c257371
-
Size
114KB
-
Sample
221129-gy9tdacg36
-
MD5
01ee180c315d0f6fa41f20a1f3ed33f0
-
SHA1
b8fc4a4197a23703e0063ad4ad51b734687803d6
-
SHA256
e0207a9257e33ccd5fa9816be1c47628b69e61ce7d83880434005dbd9c257371
-
SHA512
1180e29d757d683661617388507f044b94ca07838dc4e0d6d7caff75bf6ec655743383b12b87458fbe0ac85ef5132783c480f43bccc016db88cd89e064f1caa2
-
SSDEEP
1536:P7L0gUavuPbzRUSdxRWs+LM2GjbQwTxrPwhwF9gukRuY5Q:TIg7vuzzQM1QwVPw4gukRua
Malware Config
Targets
-
-
Target
e0207a9257e33ccd5fa9816be1c47628b69e61ce7d83880434005dbd9c257371
-
Size
114KB
-
MD5
01ee180c315d0f6fa41f20a1f3ed33f0
-
SHA1
b8fc4a4197a23703e0063ad4ad51b734687803d6
-
SHA256
e0207a9257e33ccd5fa9816be1c47628b69e61ce7d83880434005dbd9c257371
-
SHA512
1180e29d757d683661617388507f044b94ca07838dc4e0d6d7caff75bf6ec655743383b12b87458fbe0ac85ef5132783c480f43bccc016db88cd89e064f1caa2
-
SSDEEP
1536:P7L0gUavuPbzRUSdxRWs+LM2GjbQwTxrPwhwF9gukRuY5Q:TIg7vuzzQM1QwVPw4gukRua
Score8/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
VMProtect packed file
Detects executables packed with VMProtect commercial packer.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-
Modifies WinLogon
-
Drops file in System32 directory
-