General
-
Target
file.exe
-
Size
2.0MB
-
Sample
221130-17dbbade8s
-
MD5
a5c1ba5fd189ec43738443f75a077247
-
SHA1
fa435538a769a2738d21d716b829861ca01fe0ad
-
SHA256
19bc5c10f2c5687ea4f588ad903bef40d4d6a5a9e6da36e0ea16b3ddfaf98768
-
SHA512
0bbaa013c95f7c8909d4ba8a40dbc41bfc316ce3baa34a1e89b68d394bb7adc08f8930c666a4b45622edd455b409404e6475d6ca2aa4976d223b8d39eeea1244
-
SSDEEP
49152:4Z2bvrXkdiGf5CVZWgRUqWMrworumT3jiNUAG5cyf:4MvY0Gf58vUVMkofT3jiOXcyf
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220901-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.0MB
-
MD5
a5c1ba5fd189ec43738443f75a077247
-
SHA1
fa435538a769a2738d21d716b829861ca01fe0ad
-
SHA256
19bc5c10f2c5687ea4f588ad903bef40d4d6a5a9e6da36e0ea16b3ddfaf98768
-
SHA512
0bbaa013c95f7c8909d4ba8a40dbc41bfc316ce3baa34a1e89b68d394bb7adc08f8930c666a4b45622edd455b409404e6475d6ca2aa4976d223b8d39eeea1244
-
SSDEEP
49152:4Z2bvrXkdiGf5CVZWgRUqWMrworumT3jiNUAG5cyf:4MvY0Gf58vUVMkofT3jiOXcyf
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-