General
-
Target
9ccf9834de10c446bb362d5f6264759c2fb38e1e5b199d2f3b747272adcad1d9.exe
-
Size
2.1MB
-
Sample
221203-z749csfb92
-
MD5
9136f6950c04be4745d30a5aecea67bd
-
SHA1
4a983c519ec97da81bf2da4b1401af2a4a8c8f69
-
SHA256
9ccf9834de10c446bb362d5f6264759c2fb38e1e5b199d2f3b747272adcad1d9
-
SHA512
c7d3e304b3354072a016c4c8486c9cfeb268012186ded0e3d828d5af10b3f10ced11a39f6af3f3184d5193757c1b8c551b96b8659d27419ec6a4ce0561061b09
-
SSDEEP
49152:8nL9lvT74f22yL5cGj8ozq8wwTdKpEuu/VM7bYdyhOiIPAG5cyO:8LrLIkLLz0wksVM7bYdYOPXcyO
Static task
static1
Behavioral task
behavioral1
Sample
9ccf9834de10c446bb362d5f6264759c2fb38e1e5b199d2f3b747272adcad1d9.exe
Resource
win7-20220901-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
9ccf9834de10c446bb362d5f6264759c2fb38e1e5b199d2f3b747272adcad1d9.exe
-
Size
2.1MB
-
MD5
9136f6950c04be4745d30a5aecea67bd
-
SHA1
4a983c519ec97da81bf2da4b1401af2a4a8c8f69
-
SHA256
9ccf9834de10c446bb362d5f6264759c2fb38e1e5b199d2f3b747272adcad1d9
-
SHA512
c7d3e304b3354072a016c4c8486c9cfeb268012186ded0e3d828d5af10b3f10ced11a39f6af3f3184d5193757c1b8c551b96b8659d27419ec6a4ce0561061b09
-
SSDEEP
49152:8nL9lvT74f22yL5cGj8ozq8wwTdKpEuu/VM7bYdyhOiIPAG5cyO:8LrLIkLLz0wksVM7bYdYOPXcyO
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-