General
-
Target
c5b37b72e1639be066bd76c54918db322c122513dfd9477ca297be896ceb89f1
-
Size
176KB
-
Sample
221205-3ex65agd38
-
MD5
b17831dd8a3bd3b973b04222635590a4
-
SHA1
ca8cde2be731517d27f87d198d3392a997168735
-
SHA256
c5b37b72e1639be066bd76c54918db322c122513dfd9477ca297be896ceb89f1
-
SHA512
3ba7d802705526bfbb1096bfe936a12a627e18490df1a3700bca947f393ac327f9ca6ba030b3b54330348d94c6f3307f997606454805b36ecb711ad7cb3ade87
-
SSDEEP
3072:5taGK/fObT/bGiS3LOClnkZQxlrUax81zX1faK0U9C00hKex9nQ3b7a5VpIC+RZL:5t1K/fObT/bGiELOSnkZQxlrUax8NX1t
Malware Config
Targets
-
-
Target
c5b37b72e1639be066bd76c54918db322c122513dfd9477ca297be896ceb89f1
-
Size
176KB
-
MD5
b17831dd8a3bd3b973b04222635590a4
-
SHA1
ca8cde2be731517d27f87d198d3392a997168735
-
SHA256
c5b37b72e1639be066bd76c54918db322c122513dfd9477ca297be896ceb89f1
-
SHA512
3ba7d802705526bfbb1096bfe936a12a627e18490df1a3700bca947f393ac327f9ca6ba030b3b54330348d94c6f3307f997606454805b36ecb711ad7cb3ade87
-
SSDEEP
3072:5taGK/fObT/bGiS3LOClnkZQxlrUax81zX1faK0U9C00hKex9nQ3b7a5VpIC+RZL:5t1K/fObT/bGiELOSnkZQxlrUax8NX1t
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-