General
-
Target
b36db631c40de1271a39615da5daf4f19e7c51d246b5da94f0d961a19618756b
-
Size
280KB
-
Sample
221202-ahd87shf9z
-
MD5
964c5a4a9812dff2d1561cb23897b37a
-
SHA1
e715b3c28e4bb2939620a5d658842066eaaab111
-
SHA256
b36db631c40de1271a39615da5daf4f19e7c51d246b5da94f0d961a19618756b
-
SHA512
24780bbb3800f8292ae2697f37811ebd9be881eccf6658ec263cafdc688b061545d592f2b115461d0aa428d61356c0938d41738816c895a791bd4a79ef3db756
-
SSDEEP
3072:DaWoDGiHOPiu8aQb3TqDUCiGjHJDbRv9y+qwa+rZf/MVBXBq:zoGiHOq3TqD+0HBb5ta+rZ3MTo
Malware Config
Targets
-
-
Target
b36db631c40de1271a39615da5daf4f19e7c51d246b5da94f0d961a19618756b
-
Size
280KB
-
MD5
964c5a4a9812dff2d1561cb23897b37a
-
SHA1
e715b3c28e4bb2939620a5d658842066eaaab111
-
SHA256
b36db631c40de1271a39615da5daf4f19e7c51d246b5da94f0d961a19618756b
-
SHA512
24780bbb3800f8292ae2697f37811ebd9be881eccf6658ec263cafdc688b061545d592f2b115461d0aa428d61356c0938d41738816c895a791bd4a79ef3db756
-
SSDEEP
3072:DaWoDGiHOPiu8aQb3TqDUCiGjHJDbRv9y+qwa+rZf/MVBXBq:zoGiHOq3TqD+0HBb5ta+rZ3MTo
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-