General
-
Target
ed6666195414a4a65520dfb8bac53a58e41159b21809a444267d319c7e8b4ed4
-
Size
344KB
-
Sample
221205-3s2fpshd37
-
MD5
26b45da5cd70b94a27d4622cc1a9644d
-
SHA1
ba825a3a63693ef98086add9d0d38c3341b154d6
-
SHA256
ed6666195414a4a65520dfb8bac53a58e41159b21809a444267d319c7e8b4ed4
-
SHA512
5fa7904c684cc008fd474cf6e3a050f67abf0cab3e7b82c8cb3c8387a027b95f5cace0ecf8bcf4b2e2b7ee2be7504db6c8494ff49517606e0f202dab34ef5229
-
SSDEEP
6144:TvDoi6eqaPzJwCT0znucerL3tjRs2Ufg/4t/S2rBTATZUEUxDuus5As01uudY+o8:zoaPfjRsQ6S2NdX5oeCs
Malware Config
Targets
-
-
Target
ed6666195414a4a65520dfb8bac53a58e41159b21809a444267d319c7e8b4ed4
-
Size
344KB
-
MD5
26b45da5cd70b94a27d4622cc1a9644d
-
SHA1
ba825a3a63693ef98086add9d0d38c3341b154d6
-
SHA256
ed6666195414a4a65520dfb8bac53a58e41159b21809a444267d319c7e8b4ed4
-
SHA512
5fa7904c684cc008fd474cf6e3a050f67abf0cab3e7b82c8cb3c8387a027b95f5cace0ecf8bcf4b2e2b7ee2be7504db6c8494ff49517606e0f202dab34ef5229
-
SSDEEP
6144:TvDoi6eqaPzJwCT0znucerL3tjRs2Ufg/4t/S2rBTATZUEUxDuus5As01uudY+o8:zoaPfjRsQ6S2NdX5oeCs
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-