General
-
Target
d0e5607871c00ee8d7b30ec8d071c88577db1c5a575b5da9df6011f5a137ac68
-
Size
279KB
-
Sample
221201-vsk5qaag36
-
MD5
6e0a8f09481a82dbe5d5bc54c03f6817
-
SHA1
9c3c7fa3018dc175920689264abdd43b894b787b
-
SHA256
d0e5607871c00ee8d7b30ec8d071c88577db1c5a575b5da9df6011f5a137ac68
-
SHA512
4ecfed5dc02524eae7b885f7e4b86578e3579f06b7ee4fe650dd19b54dbf499202e1a216b700ad6559460de7b7c35207816b9d439302420ab7ced1f755581fe6
-
SSDEEP
6144:HY/XgvZX4NeCpv8WjKQ5RkuSwfi3JMA7gYUR5KrGyIR:+I4Nhp6Gn+JMM4RcmR
Malware Config
Targets
-
-
Target
d0e5607871c00ee8d7b30ec8d071c88577db1c5a575b5da9df6011f5a137ac68
-
Size
279KB
-
MD5
6e0a8f09481a82dbe5d5bc54c03f6817
-
SHA1
9c3c7fa3018dc175920689264abdd43b894b787b
-
SHA256
d0e5607871c00ee8d7b30ec8d071c88577db1c5a575b5da9df6011f5a137ac68
-
SHA512
4ecfed5dc02524eae7b885f7e4b86578e3579f06b7ee4fe650dd19b54dbf499202e1a216b700ad6559460de7b7c35207816b9d439302420ab7ced1f755581fe6
-
SSDEEP
6144:HY/XgvZX4NeCpv8WjKQ5RkuSwfi3JMA7gYUR5KrGyIR:+I4Nhp6Gn+JMM4RcmR
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Adds Run key to start application
-
Drops file in System32 directory
-