General
-
Target
872811431adbc2b9d2c1ecf065155dda079f5fed963d85a780c64d207e32d3c3.exe
-
Size
2.3MB
-
Sample
221203-my22esgf3y
-
MD5
4df9568ac3420084312af97086c71b0b
-
SHA1
906f8ffa13794b1659e7b4253e41f4d784c5fbda
-
SHA256
872811431adbc2b9d2c1ecf065155dda079f5fed963d85a780c64d207e32d3c3
-
SHA512
877d6593e768f1a44045845e1ba05eddc66bb69007179dc47e3d4a5349f0e7577fb52b1d37848477a36b74b146b1ee80c01fd1fef8379129a5d079964e1cfaeb
-
SSDEEP
49152:IkptIeQrAsxCchYQcHtjAxGkiCk5dUEkrHHoP5S6Bu3xHzAG5cy+:IGCeQ4QOvkiBqns5FMXcy+
Static task
static1
Behavioral task
behavioral1
Sample
872811431adbc2b9d2c1ecf065155dda079f5fed963d85a780c64d207e32d3c3.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
872811431adbc2b9d2c1ecf065155dda079f5fed963d85a780c64d207e32d3c3.exe
-
Size
2.3MB
-
MD5
4df9568ac3420084312af97086c71b0b
-
SHA1
906f8ffa13794b1659e7b4253e41f4d784c5fbda
-
SHA256
872811431adbc2b9d2c1ecf065155dda079f5fed963d85a780c64d207e32d3c3
-
SHA512
877d6593e768f1a44045845e1ba05eddc66bb69007179dc47e3d4a5349f0e7577fb52b1d37848477a36b74b146b1ee80c01fd1fef8379129a5d079964e1cfaeb
-
SSDEEP
49152:IkptIeQrAsxCchYQcHtjAxGkiCk5dUEkrHHoP5S6Bu3xHzAG5cy+:IGCeQ4QOvkiBqns5FMXcy+
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-