General
-
Target
2053cabfcdc11ba74c6146c1fc85068abce2515da02783575bc3b6fc733b68c6
-
Size
420KB
-
Sample
221129-scn6bsad78
-
MD5
36b0b7117db939d90551f520d5d01b00
-
SHA1
2319f0bb15e03852259776675628ec1287c3d369
-
SHA256
2053cabfcdc11ba74c6146c1fc85068abce2515da02783575bc3b6fc733b68c6
-
SHA512
4b4a2dfa872fcaeaea6137188b071a2c168b39903ef6905413161c7909b5043b89f6d0c1cc43c2ba249c16c638468bb22a1e5a11eb5b1d67efa548fd431590e4
-
SSDEEP
6144:jrl4unt0McMHehgSqfWxfh0SM/r01uVs7f/aRvE9mSIE9Svz7geVz65JM7s1E8pG:xLwOeZqgvwa2x6HHVJ4
Malware Config
Targets
-
-
Target
2053cabfcdc11ba74c6146c1fc85068abce2515da02783575bc3b6fc733b68c6
-
Size
420KB
-
MD5
36b0b7117db939d90551f520d5d01b00
-
SHA1
2319f0bb15e03852259776675628ec1287c3d369
-
SHA256
2053cabfcdc11ba74c6146c1fc85068abce2515da02783575bc3b6fc733b68c6
-
SHA512
4b4a2dfa872fcaeaea6137188b071a2c168b39903ef6905413161c7909b5043b89f6d0c1cc43c2ba249c16c638468bb22a1e5a11eb5b1d67efa548fd431590e4
-
SSDEEP
6144:jrl4unt0McMHehgSqfWxfh0SM/r01uVs7f/aRvE9mSIE9Svz7geVz65JM7s1E8pG:xLwOeZqgvwa2x6HHVJ4
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Drops desktop.ini file(s)
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-