General
-
Target
bbba9aca20bc1f4c006489258d8b8f50a62ebaaa53a15d99b79fea2c68b13312
-
Size
392KB
-
Sample
221203-c8skmabg5v
-
MD5
38b852c6be04f9749115fb995490e08c
-
SHA1
79fd7395f28f37d9d38abfadc5a4c42d60c98079
-
SHA256
bbba9aca20bc1f4c006489258d8b8f50a62ebaaa53a15d99b79fea2c68b13312
-
SHA512
d7d41b0c58fd18e14a0eb5ef3125acc1925910ecb368ed4615961cad0dcf4c61ca263d3fb875f182857165fb66713bef688075d3585e9ea5eedb419b559a6ead
-
SSDEEP
12288:st8vVED3Bk0Mr9Vif7/F1hIIaYHuvAIS2K:st+gvMpVij/F1hV5HuvAIQ
Malware Config
Targets
-
-
Target
bbba9aca20bc1f4c006489258d8b8f50a62ebaaa53a15d99b79fea2c68b13312
-
Size
392KB
-
MD5
38b852c6be04f9749115fb995490e08c
-
SHA1
79fd7395f28f37d9d38abfadc5a4c42d60c98079
-
SHA256
bbba9aca20bc1f4c006489258d8b8f50a62ebaaa53a15d99b79fea2c68b13312
-
SHA512
d7d41b0c58fd18e14a0eb5ef3125acc1925910ecb368ed4615961cad0dcf4c61ca263d3fb875f182857165fb66713bef688075d3585e9ea5eedb419b559a6ead
-
SSDEEP
12288:st8vVED3Bk0Mr9Vif7/F1hIIaYHuvAIS2K:st+gvMpVij/F1hV5HuvAIQ
Score8/10-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Drops startup file
-
Loads dropped DLL
-
Adds Run key to start application
-