General
-
Target
231fa5e477b2133c25bc3d3eeb8928957f7de72d7b9a46f2b5845e449a39d1db.exe
-
Size
100KB
-
Sample
221204-l8b3badd6w
-
MD5
046952a767b21ebe4c750e29a067cc71
-
SHA1
4db90105c79ef980cb539af6f89e8c7f6878e15e
-
SHA256
231fa5e477b2133c25bc3d3eeb8928957f7de72d7b9a46f2b5845e449a39d1db
-
SHA512
5655149fa794b9b30f05ff90206a1ac7f33ba666417ba0efee8a06638adf6862896e75a21052f47362fc59f9c6a1f60c69bb21ab47f5696828ffa119b290d193
-
SSDEEP
1536:TqB8j9QqTMSyWiWLrhwrkdXvKJV44Ri8k2UkOjXihqTvwEKXkzZF:mB+pLrYkZvKJtO2NEKYF
Behavioral task
behavioral1
Sample
231fa5e477b2133c25bc3d3eeb8928957f7de72d7b9a46f2b5845e449a39d1db.exe
Resource
win7-20221111-en
Malware Config
Extracted
pony
http://crnotmxtznajfjh.nut.cc/22karat/panelnew/gate.php
Targets
-
-
Target
231fa5e477b2133c25bc3d3eeb8928957f7de72d7b9a46f2b5845e449a39d1db.exe
-
Size
100KB
-
MD5
046952a767b21ebe4c750e29a067cc71
-
SHA1
4db90105c79ef980cb539af6f89e8c7f6878e15e
-
SHA256
231fa5e477b2133c25bc3d3eeb8928957f7de72d7b9a46f2b5845e449a39d1db
-
SHA512
5655149fa794b9b30f05ff90206a1ac7f33ba666417ba0efee8a06638adf6862896e75a21052f47362fc59f9c6a1f60c69bb21ab47f5696828ffa119b290d193
-
SSDEEP
1536:TqB8j9QqTMSyWiWLrhwrkdXvKJV44Ri8k2UkOjXihqTvwEKXkzZF:mB+pLrYkZvKJtO2NEKYF
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Accesses Microsoft Outlook accounts
-
Accesses Microsoft Outlook profiles
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-