General
-
Target
b77420a16dc2e3bed70e63fb428ff66c51ba35902c4467b86804e43d6d26b03a
-
Size
477KB
-
Sample
221205-hsshksfc39
-
MD5
acf13908b651c82d76391dda3574c6e0
-
SHA1
ff0d66a8e6b6ab2ea79cf5e4962047098b82a4ba
-
SHA256
b77420a16dc2e3bed70e63fb428ff66c51ba35902c4467b86804e43d6d26b03a
-
SHA512
2cc12305e375ff980a6edb39f676a90e249d76becfa0646f90623104a90229fc2af28feb10c08b6e4c32debbdcf9d67aa19e389352e70f7c75358fd9257533bf
-
SSDEEP
12288:w8blFZ0oXr/5NliDenCEkvjnVwEvLPwzJzu9OX2Ukx5vcEi0/3IWV2//c9Yc:w8blFZ0oXrHkjVwEvLPg3/O
Malware Config
Targets
-
-
Target
b77420a16dc2e3bed70e63fb428ff66c51ba35902c4467b86804e43d6d26b03a
-
Size
477KB
-
MD5
acf13908b651c82d76391dda3574c6e0
-
SHA1
ff0d66a8e6b6ab2ea79cf5e4962047098b82a4ba
-
SHA256
b77420a16dc2e3bed70e63fb428ff66c51ba35902c4467b86804e43d6d26b03a
-
SHA512
2cc12305e375ff980a6edb39f676a90e249d76becfa0646f90623104a90229fc2af28feb10c08b6e4c32debbdcf9d67aa19e389352e70f7c75358fd9257533bf
-
SSDEEP
12288:w8blFZ0oXr/5NliDenCEkvjnVwEvLPwzJzu9OX2Ukx5vcEi0/3IWV2//c9Yc:w8blFZ0oXrHkjVwEvLPg3/O
Score8/10-
Disables RegEdit via registry modification
-
Disables Task Manager via registry modification
-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Drops file in System32 directory
-