General
-
Target
89fcb2ad64320c6fad68c32bb7c75f218704517bd758c4c967c693f18a1abbeb
-
Size
44KB
-
Sample
221202-2g5hjsbb46
-
MD5
c55a42e3da354cb60afc41cbf74281d2
-
SHA1
9fd937edbcc4e54345b2a102b83aaecb33598a45
-
SHA256
89fcb2ad64320c6fad68c32bb7c75f218704517bd758c4c967c693f18a1abbeb
-
SHA512
4c3026cb698146c6afd57e2e61cd890583066605a7c86b17d7dbef544cdc6c2cce6d179378776e6e5b2c0d03ef384b3bbbc43e5be138ac211de5177cbdebe2f6
-
SSDEEP
768:8YnuR7Rll/tVbh6lVh/EWmc56EGNg62hbrQWwnCE1:8GGl/klVGWAnCE1
Malware Config
Targets
-
-
Target
89fcb2ad64320c6fad68c32bb7c75f218704517bd758c4c967c693f18a1abbeb
-
Size
44KB
-
MD5
c55a42e3da354cb60afc41cbf74281d2
-
SHA1
9fd937edbcc4e54345b2a102b83aaecb33598a45
-
SHA256
89fcb2ad64320c6fad68c32bb7c75f218704517bd758c4c967c693f18a1abbeb
-
SHA512
4c3026cb698146c6afd57e2e61cd890583066605a7c86b17d7dbef544cdc6c2cce6d179378776e6e5b2c0d03ef384b3bbbc43e5be138ac211de5177cbdebe2f6
-
SSDEEP
768:8YnuR7Rll/tVbh6lVh/EWmc56EGNg62hbrQWwnCE1:8GGl/klVGWAnCE1
Score10/10-
Disables service(s)
-
Modifies WinLogon for persistence
-
Executes dropped EXE
-
Modifies service settings
Alters the configuration of existing services.
-
Stops running service(s)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-