General
-
Target
9a25c7125083aa08700889082a1d830344e4bbc6a441b22600d4d40ca507da87
-
Size
775KB
-
Sample
221129-txpg9sef57
-
MD5
6181dcc0e984b0d0ac6d3bdbe7de5678
-
SHA1
c1c3e8c738f274ed483322f42c55ab3ba41e99b5
-
SHA256
9a25c7125083aa08700889082a1d830344e4bbc6a441b22600d4d40ca507da87
-
SHA512
24310cad7b1e6aa4558e87ae4383d90e8522457819be04a72bb7bfb5af13258af360e2b9f086db13609ba5501bde788146ec1a1b0879bcf2bb3b99b8157dfe5e
-
SSDEEP
12288:g72bnuwsO0ADREQ772bnuwsO0ADREQTkTQyH:g72zp9EE72zp9E1QK
Malware Config
Targets
-
-
Target
9a25c7125083aa08700889082a1d830344e4bbc6a441b22600d4d40ca507da87
-
Size
775KB
-
MD5
6181dcc0e984b0d0ac6d3bdbe7de5678
-
SHA1
c1c3e8c738f274ed483322f42c55ab3ba41e99b5
-
SHA256
9a25c7125083aa08700889082a1d830344e4bbc6a441b22600d4d40ca507da87
-
SHA512
24310cad7b1e6aa4558e87ae4383d90e8522457819be04a72bb7bfb5af13258af360e2b9f086db13609ba5501bde788146ec1a1b0879bcf2bb3b99b8157dfe5e
-
SSDEEP
12288:g72bnuwsO0ADREQ772bnuwsO0ADREQTkTQyH:g72zp9EE72zp9E1QK
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-