General
-
Target
8a86262f2f0a8924f499900f7695bb8e659b549c05dff658205b710d2308bac0
-
Size
657KB
-
Sample
221129-tx3pwsef88
-
MD5
71f5cd3dd572d5147962eea9d22e2b9e
-
SHA1
b81eaf651d7aa70bf700a444e66c3ce47343a89c
-
SHA256
8a86262f2f0a8924f499900f7695bb8e659b549c05dff658205b710d2308bac0
-
SHA512
f44d81eb083f0f4600876c77ca80019a820fd8cbcb36ee7fab7e09db893d1bc5c73213d3d5d3e37dac683b8adb6b231954729162a0737e49d561e60b464696cb
-
SSDEEP
12288:g72bnueKBLWoD1+OteKIjX9aTQT5Hk45QRbaxlwfCGWPI/D+WC:g72zDKFD1e9UDq
Malware Config
Targets
-
-
Target
8a86262f2f0a8924f499900f7695bb8e659b549c05dff658205b710d2308bac0
-
Size
657KB
-
MD5
71f5cd3dd572d5147962eea9d22e2b9e
-
SHA1
b81eaf651d7aa70bf700a444e66c3ce47343a89c
-
SHA256
8a86262f2f0a8924f499900f7695bb8e659b549c05dff658205b710d2308bac0
-
SHA512
f44d81eb083f0f4600876c77ca80019a820fd8cbcb36ee7fab7e09db893d1bc5c73213d3d5d3e37dac683b8adb6b231954729162a0737e49d561e60b464696cb
-
SSDEEP
12288:g72bnueKBLWoD1+OteKIjX9aTQT5Hk45QRbaxlwfCGWPI/D+WC:g72zDKFD1e9UDq
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-