General
-
Target
46d12f6912d53d3e2cb7eae11b17556ff019ac9137d2ffa34dc40381ee2316ba.exe
-
Size
3.6MB
-
Sample
221204-mzdefsfg4t
-
MD5
1d6636b2150be085ce7de68c7bd5b8df
-
SHA1
08e9b0130986187d32bf031d9ad5ec0343ba14ea
-
SHA256
46d12f6912d53d3e2cb7eae11b17556ff019ac9137d2ffa34dc40381ee2316ba
-
SHA512
82721b2efd3c20c697c850b27abc35a6bb0f96c9d91b3b7d97f37ac8ae243ef8f990561c1a46157c8124c5f16ad8991750dab94a77ac7336d1f9fd9493160fbb
-
SSDEEP
98304:IZ1ryowf9Wc/PLFK069ZfREDTUBW0oXcyd:OdHiPZKZXkXcyd
Static task
static1
Behavioral task
behavioral1
Sample
46d12f6912d53d3e2cb7eae11b17556ff019ac9137d2ffa34dc40381ee2316ba.exe
Resource
win7-20221111-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
46d12f6912d53d3e2cb7eae11b17556ff019ac9137d2ffa34dc40381ee2316ba.exe
-
Size
3.6MB
-
MD5
1d6636b2150be085ce7de68c7bd5b8df
-
SHA1
08e9b0130986187d32bf031d9ad5ec0343ba14ea
-
SHA256
46d12f6912d53d3e2cb7eae11b17556ff019ac9137d2ffa34dc40381ee2316ba
-
SHA512
82721b2efd3c20c697c850b27abc35a6bb0f96c9d91b3b7d97f37ac8ae243ef8f990561c1a46157c8124c5f16ad8991750dab94a77ac7336d1f9fd9493160fbb
-
SSDEEP
98304:IZ1ryowf9Wc/PLFK069ZfREDTUBW0oXcyd:OdHiPZKZXkXcyd
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-