General
-
Target
file.exe
-
Size
2.2MB
-
Sample
221201-hs9rvseb24
-
MD5
726fdf8b07ec1c87c9f565bd40b9d968
-
SHA1
e03f52ce7e714e0ca1bb28e5815c03fe5681b78a
-
SHA256
ed4295cfebccbbd07af6a786290ab7b7c74e478e19a3ab4eb062fb5bb7431478
-
SHA512
4b55f7e33b6c0cdefa010569a3c19309ad0b55712aede59863a250fed4556c0ed9ff3901a823c179b510517ce6416d5181ba726486b7433d557880ae9e70b6ea
-
SSDEEP
49152:4nthJfWCVf9KxbWmylt1VX4xdWIy9H6F81ZYAG5cyn:4ndJ0ot1goRhyOWXcyn
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20221111-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
2.2MB
-
MD5
726fdf8b07ec1c87c9f565bd40b9d968
-
SHA1
e03f52ce7e714e0ca1bb28e5815c03fe5681b78a
-
SHA256
ed4295cfebccbbd07af6a786290ab7b7c74e478e19a3ab4eb062fb5bb7431478
-
SHA512
4b55f7e33b6c0cdefa010569a3c19309ad0b55712aede59863a250fed4556c0ed9ff3901a823c179b510517ce6416d5181ba726486b7433d557880ae9e70b6ea
-
SSDEEP
49152:4nthJfWCVf9KxbWmylt1VX4xdWIy9H6F81ZYAG5cyn:4ndJ0ot1goRhyOWXcyn
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-