General
-
Target
UU.exe
-
Size
858KB
-
Sample
221130-zpa8kadh43
-
MD5
89e48a555b28668e0bce1728b8c56638
-
SHA1
ab56a4197e4a984a9efd5ed0a11b8f06af02b0c3
-
SHA256
5c09d69e1074890c0f9dd2b4cb100200179fc87de3e60f3d70a007f07d7864e1
-
SHA512
623f72f11f70c79bef1534e3dff6e29b8d901caf5dbd93b98c0490f893d99bb40ff5e3e89a5b22469b43aaf4f8651f1f1b5fccf69dc664d35a4547ea50d9a4b5
-
SSDEEP
12288:fjohAmQaalRRw8gf3KjLgeA87QIBqPwNK7sb7/sn1gSp4JZX9jq:syGp80ajLgeA87QIe7w7En1gSp4TX9j
Static task
static1
Behavioral task
behavioral1
Sample
UU.exe
Resource
win7-20221111-en
Malware Config
Extracted
formbook
c43g
TJbzc715oMJyvdR2QVKD7Vo0tQY7R7Ey8A==
s0SBKHqd+pu4ExyvcX8DH+EhBZk7og==
dIFcsOkaySIJIw==
nvCLvSBIvt/XA8toCA05klSmSCs=
eAuSnrNfn/zh//Q=
9gFqr+CHySIJIw==
UND1oatxstSL8/uia5b4L9sa
EE2Wu7NkmKhw6dWD/ZrV
pTc3sxUsdqBbV7mgf6U=
bOoXvKs7MlJ2sCC93H0u0w==
fYSulyhLySIJIw==
Ud0T4Sdau9HjE5WDHTLV
x1ogw5IzvNLn
a6Utc6622e7N7rKV7g3E
e8rnBl+SJgun5NdyTaaLWEbEySM=
sjRR7uGCkOl33+w=
FWLaFz7vG7RHTvemab6vBYM=
KKdNclzjyFxvW7mgf6U=
6lpaaOHCJSk=
RaGqPzng+SYHWbHDFmuS0Q==
fMRLlOMELFQ4Mtx7ITlkHlSmSCs=
4F1lEEkA7QDk6YZGUG1vI1SmSCs=
0ZUSGNl0K0yZ7nFHz3OZ2Q==
ryvdLnSiCpqGr5VZfws7LB3q1g==
r/8cydCG88d51uQ=
pNtv4c5qdYZQlyXGTvzieUMF3g==
lou1qEUxeel33+w=
HSo7N6ZiVlkncOGC
2CtgO2mM3C0QGfs=
xB+jf62v3OjzVeh605s6hcRt/5/C
Nbvru+V1an9ogzj20+YZhlSmSCs=
oinQJ2yU9H5fZAeoHnuv2w==
LnKEcVWfwwDw
H6Xar9FkcZBF1KhL857V
rC0rtc+AksfeJwnlIzvd
X42vvtek8QwLMBbKcnuP34I+8BB6Qls=
GmkOX5m4F7bBCw7F9uh1zA==
Pn0XoadMcvT6QFRBxul2zA==
p9lcfdPwVFYMZnQc9wtU86NzHalOqA==
a7W0bqq99tQbtDjgEQ==
Ez18kKQzvNLn
dKXGpTRRySIJIw==
7Tk5/ybdHrPABRGuX3jBKrNP9BB6Qls=
W52/qNPT5pq089FtYeWTOwjieaVIoVM=
i9hTitybkhzuBdNpV76vBYM=
UKHFXEzxDoWR6bmgf6U=
5WFz3BQzeOl33+w=
fitTI1P5AhbG/d+Mkg08LB3q1g==
DouUcXsUB4hZtDjgEQ==
L20YnY8oMlg5RxLlIzvd
3TZrVNFtJcMMXyXZEw==
urwV2nOG1/YCK+Q=
82uYOTjqARrfKwa2Hnuv2w==
DHmTZL2Ciul33+w=
RIyvjM4FW/2n7N58DmaBwg==
cQeEhPUfcGxMV/usj5q5kmvtcsPa
UdYPuMOM4HBYtDjgEQ==
CV1MvbFNbvD3Q0HcuTPVLB3q1g==
CVybiqZamzA1R+CEFmuS0Q==
+UiYOkj5LsTSA7mgf6U=
0CFEFVl+0fD1JQjlIzvd
vBUj4x08mr6UGfya
WaNIg79kjA0YcXsY6/EhkVSmSCs=
VLFHgMXkVUlPNA==
k-outlets.com
Targets
-
-
Target
UU.exe
-
Size
858KB
-
MD5
89e48a555b28668e0bce1728b8c56638
-
SHA1
ab56a4197e4a984a9efd5ed0a11b8f06af02b0c3
-
SHA256
5c09d69e1074890c0f9dd2b4cb100200179fc87de3e60f3d70a007f07d7864e1
-
SHA512
623f72f11f70c79bef1534e3dff6e29b8d901caf5dbd93b98c0490f893d99bb40ff5e3e89a5b22469b43aaf4f8651f1f1b5fccf69dc664d35a4547ea50d9a4b5
-
SSDEEP
12288:fjohAmQaalRRw8gf3KjLgeA87QIBqPwNK7sb7/sn1gSp4JZX9jq:syGp80ajLgeA87QIe7w7En1gSp4TX9j
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-