General
-
Target
file.exe
-
Size
2.1MB
-
Sample
221201-beek8sed3v
-
MD5
84e9d47f966f3e1c76e50bbb83e70322
-
SHA1
a070084d59e30ac64aadb71a6ec316c1f3b1c98d
-
SHA256
5d54800e19b4053a86904f9d3fa25e5909c4c34993eaabf72e74bcb67fc900d6
-
SHA512
0837e714448ca1ecbf01b9f4b98c23f785b020511d3aff08532d3bd3f5e9a539d0ccecb654537ea526697f87fde5fb2963dc49df2b631432c91a375dde083213
-
SSDEEP
49152:UIL4My6nHn1ZEn27VzG5hmX7cO6jiMYpH5W+PyxmFaG1r4/LxCzAG5cy/:UUdHfEn2VkhmLcO8iVHc+X/r4/dCzXcs
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220901-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.1MB
-
MD5
84e9d47f966f3e1c76e50bbb83e70322
-
SHA1
a070084d59e30ac64aadb71a6ec316c1f3b1c98d
-
SHA256
5d54800e19b4053a86904f9d3fa25e5909c4c34993eaabf72e74bcb67fc900d6
-
SHA512
0837e714448ca1ecbf01b9f4b98c23f785b020511d3aff08532d3bd3f5e9a539d0ccecb654537ea526697f87fde5fb2963dc49df2b631432c91a375dde083213
-
SSDEEP
49152:UIL4My6nHn1ZEn27VzG5hmX7cO6jiMYpH5W+PyxmFaG1r4/LxCzAG5cy/:UUdHfEn2VkhmLcO8iVHc+X/r4/dCzXcs
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-