General
-
Target
767fc0fe90030ec5cc5466605da13e262c889ffcfca8d189e0255096945060b9
-
Size
43KB
-
Sample
221129-xahyraee28
-
MD5
3ff1d4d90089b7b85a311d36dd65df90
-
SHA1
ac9c6c488afb359abc4035ea448c3daed0e09247
-
SHA256
767fc0fe90030ec5cc5466605da13e262c889ffcfca8d189e0255096945060b9
-
SHA512
bda7bff84fa0c43c437dd1c9d677194672a00e33e5d171b77b520765d624773f03d772612dffef6b27f9f9b4dd12b1729e2a0e783455b2f531d3036ad10ae383
-
SSDEEP
768:OoJZf8+T6hhSEs2bArq92T62oz5c1+6HPjH/Qqvtu1C+V2r1afAGclevNU3QUvmF:RG27dPTPKhyafABlevtHCCrk
Static task
static1
Behavioral task
behavioral1
Sample
767fc0fe90030ec5cc5466605da13e262c889ffcfca8d189e0255096945060b9.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
767fc0fe90030ec5cc5466605da13e262c889ffcfca8d189e0255096945060b9.exe
Resource
win10v2004-20221111-en
Malware Config
Targets
-
-
Target
767fc0fe90030ec5cc5466605da13e262c889ffcfca8d189e0255096945060b9
-
Size
43KB
-
MD5
3ff1d4d90089b7b85a311d36dd65df90
-
SHA1
ac9c6c488afb359abc4035ea448c3daed0e09247
-
SHA256
767fc0fe90030ec5cc5466605da13e262c889ffcfca8d189e0255096945060b9
-
SHA512
bda7bff84fa0c43c437dd1c9d677194672a00e33e5d171b77b520765d624773f03d772612dffef6b27f9f9b4dd12b1729e2a0e783455b2f531d3036ad10ae383
-
SSDEEP
768:OoJZf8+T6hhSEs2bArq92T62oz5c1+6HPjH/Qqvtu1C+V2r1afAGclevNU3QUvmF:RG27dPTPKhyafABlevtHCCrk
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-