General
-
Target
851b7e5160c168704fdd9337fbb3a38a37c51de2d7436e1ccf0b8691730e75ab
-
Size
124KB
-
Sample
221202-x78wfafg24
-
MD5
82ff9c210ea409bcefc24e9c49aec71f
-
SHA1
36a8d129c6144803f2f982e64c1c15fc7ccefd16
-
SHA256
851b7e5160c168704fdd9337fbb3a38a37c51de2d7436e1ccf0b8691730e75ab
-
SHA512
edbdaeaff36ebbf9e7c6f999b4995e180ba3b95acc38ee72fb78364576baaaea4316617c5e8218d95e8e80fd327f46001c84dc2c0967fc9faad0b335e5c97d06
-
SSDEEP
1536:YvZjFF4rWaYkiQixA+alh98t8aF9USvXjykwo7JaS1:WZjFF4rWejH8tq8TwQL
Malware Config
Targets
-
-
Target
851b7e5160c168704fdd9337fbb3a38a37c51de2d7436e1ccf0b8691730e75ab
-
Size
124KB
-
MD5
82ff9c210ea409bcefc24e9c49aec71f
-
SHA1
36a8d129c6144803f2f982e64c1c15fc7ccefd16
-
SHA256
851b7e5160c168704fdd9337fbb3a38a37c51de2d7436e1ccf0b8691730e75ab
-
SHA512
edbdaeaff36ebbf9e7c6f999b4995e180ba3b95acc38ee72fb78364576baaaea4316617c5e8218d95e8e80fd327f46001c84dc2c0967fc9faad0b335e5c97d06
-
SSDEEP
1536:YvZjFF4rWaYkiQixA+alh98t8aF9USvXjykwo7JaS1:WZjFF4rWejH8tq8TwQL
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-