General
-
Target
4307d7fc22fd761ec73acd6659e75ed33026c94e6363febc628b1daa6c0ab571
-
Size
62KB
-
Sample
221201-j2f2kshg48
-
MD5
493cc7577e6b8275cacbd0da1ae159a0
-
SHA1
209835db07410017d31b6f1620c44cf672235349
-
SHA256
4307d7fc22fd761ec73acd6659e75ed33026c94e6363febc628b1daa6c0ab571
-
SHA512
c65b3272ad0bc5d3e531289801a14ce95213c88ea58a627bf53656a0756d962a9274d366310a175d81d1bb51b0dfc3e76c1be603b605419a2449a4155ac55c0d
-
SSDEEP
768:hwn3wd0Hs4vlHFPMDZs32B9OOPD4Se6OGtC5sytGbEgNdw/LNPQ//ZBogA8qGG:hQ/vvPM9KE9TD8xtGXNaxQZi58qGG
Malware Config
Targets
-
-
Target
4307d7fc22fd761ec73acd6659e75ed33026c94e6363febc628b1daa6c0ab571
-
Size
62KB
-
MD5
493cc7577e6b8275cacbd0da1ae159a0
-
SHA1
209835db07410017d31b6f1620c44cf672235349
-
SHA256
4307d7fc22fd761ec73acd6659e75ed33026c94e6363febc628b1daa6c0ab571
-
SHA512
c65b3272ad0bc5d3e531289801a14ce95213c88ea58a627bf53656a0756d962a9274d366310a175d81d1bb51b0dfc3e76c1be603b605419a2449a4155ac55c0d
-
SSDEEP
768:hwn3wd0Hs4vlHFPMDZs32B9OOPD4Se6OGtC5sytGbEgNdw/LNPQ//ZBogA8qGG:hQ/vvPM9KE9TD8xtGXNaxQZi58qGG
Score8/10-
Executes dropped EXE
-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Adds Run key to start application
-