General
-
Target
b01209a99d4830af3756ff3799fee754ab75f05a275bca42b27eafe246f6c521
-
Size
136KB
-
Sample
221201-x4822agb5v
-
MD5
eb7906c1b79d9808b8b2fd425ee3e36a
-
SHA1
98aa3c018a6341f30e42b54e577fd7388fc11a8a
-
SHA256
b01209a99d4830af3756ff3799fee754ab75f05a275bca42b27eafe246f6c521
-
SHA512
63c326b8a6efe9ac3a0995f4b42bae91f6bf9009ab156d8ce29a31d3c03888721ce13bf0edb094a6c5b57825d44f602008623933e9ccc9cbad318a95807f89d3
-
SSDEEP
768:h/raHM782f9rvs2Zg5nicskQzTGfxgzh3emu4v/eB4z7VP7LdGSu2HyTAzfMgTA1:h/roM7ZJfUQWgY54v
Malware Config
Targets
-
-
Target
b01209a99d4830af3756ff3799fee754ab75f05a275bca42b27eafe246f6c521
-
Size
136KB
-
MD5
eb7906c1b79d9808b8b2fd425ee3e36a
-
SHA1
98aa3c018a6341f30e42b54e577fd7388fc11a8a
-
SHA256
b01209a99d4830af3756ff3799fee754ab75f05a275bca42b27eafe246f6c521
-
SHA512
63c326b8a6efe9ac3a0995f4b42bae91f6bf9009ab156d8ce29a31d3c03888721ce13bf0edb094a6c5b57825d44f602008623933e9ccc9cbad318a95807f89d3
-
SSDEEP
768:h/raHM782f9rvs2Zg5nicskQzTGfxgzh3emu4v/eB4z7VP7LdGSu2HyTAzfMgTA1:h/roM7ZJfUQWgY54v
Score10/10-
Modifies visibility of file extensions in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-