General
-
Target
file.exe
-
Size
2.1MB
-
Sample
221201-g2ms1sfc3v
-
MD5
643cdc7cd71748e04864048dbb5e222f
-
SHA1
bba75fab8626bc40fe57e44b3e34214af774aa4d
-
SHA256
d4e63175ab50f5c26346dd0f60a2b615dfbe5b330943d3ec9ba5b4e3fd1845fd
-
SHA512
cbfc00cc128fd53033300bb13127dc6982c8a7cc73559321bd587283f6cf158b04a279d396487877f6c27f04e7c2e920259e6cc541446b66e01ab821f831d756
-
SSDEEP
49152:8v0zLYtaQ9BdLZRD3KNKrAaybjA+X6F2eAG5cyo:8JaEh3DKNnaeZXw2eXcyo
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.1MB
-
MD5
643cdc7cd71748e04864048dbb5e222f
-
SHA1
bba75fab8626bc40fe57e44b3e34214af774aa4d
-
SHA256
d4e63175ab50f5c26346dd0f60a2b615dfbe5b330943d3ec9ba5b4e3fd1845fd
-
SHA512
cbfc00cc128fd53033300bb13127dc6982c8a7cc73559321bd587283f6cf158b04a279d396487877f6c27f04e7c2e920259e6cc541446b66e01ab821f831d756
-
SSDEEP
49152:8v0zLYtaQ9BdLZRD3KNKrAaybjA+X6F2eAG5cyo:8JaEh3DKNnaeZXw2eXcyo
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-