General
-
Target
b890929cd11e0ed3f63dae06ff410dd8bfddb029363b5e61b69f95cab68425e0
-
Size
619KB
-
Sample
221130-mfdk4sbg54
-
MD5
b1d7778999363eb3c57c5cddbda448c8
-
SHA1
aa9d5a37a1e12aee105554a912cbadaf2154ff9e
-
SHA256
b890929cd11e0ed3f63dae06ff410dd8bfddb029363b5e61b69f95cab68425e0
-
SHA512
4e87c89d1c98b6dec7c53a0c4bbe0639cf132cc7e37500247324c452407773173519010dd5f234d3ef952da7983495cf88212bb5d7fbe6466e6d2e0029c5513e
-
SSDEEP
12288:H1dlZo5ybt69soHxHRUkwI92qKS3WF7P7IiBEB:H1dlZo5HsoHxxUkwM2f17IiqB
Static task
static1
Behavioral task
behavioral1
Sample
b890929cd11e0ed3f63dae06ff410dd8bfddb029363b5e61b69f95cab68425e0.exe
Resource
win7-20220812-en
Malware Config
Targets
-
-
Target
b890929cd11e0ed3f63dae06ff410dd8bfddb029363b5e61b69f95cab68425e0
-
Size
619KB
-
MD5
b1d7778999363eb3c57c5cddbda448c8
-
SHA1
aa9d5a37a1e12aee105554a912cbadaf2154ff9e
-
SHA256
b890929cd11e0ed3f63dae06ff410dd8bfddb029363b5e61b69f95cab68425e0
-
SHA512
4e87c89d1c98b6dec7c53a0c4bbe0639cf132cc7e37500247324c452407773173519010dd5f234d3ef952da7983495cf88212bb5d7fbe6466e6d2e0029c5513e
-
SSDEEP
12288:H1dlZo5ybt69soHxHRUkwI92qKS3WF7P7IiBEB:H1dlZo5HsoHxxUkwM2f17IiqB
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-