General
-
Target
file.exe
-
Size
2.1MB
-
Sample
221201-ghggwsab84
-
MD5
8e0fe39af694e15b1ca29e82ca261f79
-
SHA1
995c469748c76dc01c02f0e1709dbeb7e97dad4c
-
SHA256
d38152d7c15992b153f160940be79c99bb37bafe9508562bca99f1482a216a8c
-
SHA512
745e6c0738ab8591ed8d69a4bcfc69d06bf1d14e73fd85111f53a158e8a044607947ea137f8e080cb00dd7aac46231213829472a61b95d6b29df5d74ef606514
-
SSDEEP
49152:woBTFX5eTZ7snS9vIpDSFgIv9U2mFOgWjIg/UU6AG5cy4:wodznfpzYgWcg/36Xcy4
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.1MB
-
MD5
8e0fe39af694e15b1ca29e82ca261f79
-
SHA1
995c469748c76dc01c02f0e1709dbeb7e97dad4c
-
SHA256
d38152d7c15992b153f160940be79c99bb37bafe9508562bca99f1482a216a8c
-
SHA512
745e6c0738ab8591ed8d69a4bcfc69d06bf1d14e73fd85111f53a158e8a044607947ea137f8e080cb00dd7aac46231213829472a61b95d6b29df5d74ef606514
-
SSDEEP
49152:woBTFX5eTZ7snS9vIpDSFgIv9U2mFOgWjIg/UU6AG5cy4:wodznfpzYgWcg/36Xcy4
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-