General
-
Target
ceb04b1dfc67d6f896fb4cd076daef78e75c426703790855bcef399a902c121c
-
Size
232KB
-
Sample
221205-mnq66sbd45
-
MD5
33ddd91f273829df3013c6a3a7493031
-
SHA1
3a2d1f34ba0e0b504d05348f01e1776a61492202
-
SHA256
ceb04b1dfc67d6f896fb4cd076daef78e75c426703790855bcef399a902c121c
-
SHA512
a6c6253a33d824642daaa839ce18ad79ccbeb1e22a7decd67c47b868ebca9242c431443b30dfaf1edab8327a469182ee7933aa93511a9e059993d8fbbb2cbb59
-
SSDEEP
6144:9cyQnhctRnmMhpL9J53vTRi52mwzB9vQ:+1cjnDnL9J53vFi52mw3vQ
Static task
static1
Behavioral task
behavioral1
Sample
ceb04b1dfc67d6f896fb4cd076daef78e75c426703790855bcef399a902c121c.exe
Resource
win7-20220812-en
Behavioral task
behavioral2
Sample
ceb04b1dfc67d6f896fb4cd076daef78e75c426703790855bcef399a902c121c.exe
Resource
win10v2004-20220901-en
Malware Config
Targets
-
-
Target
ceb04b1dfc67d6f896fb4cd076daef78e75c426703790855bcef399a902c121c
-
Size
232KB
-
MD5
33ddd91f273829df3013c6a3a7493031
-
SHA1
3a2d1f34ba0e0b504d05348f01e1776a61492202
-
SHA256
ceb04b1dfc67d6f896fb4cd076daef78e75c426703790855bcef399a902c121c
-
SHA512
a6c6253a33d824642daaa839ce18ad79ccbeb1e22a7decd67c47b868ebca9242c431443b30dfaf1edab8327a469182ee7933aa93511a9e059993d8fbbb2cbb59
-
SSDEEP
6144:9cyQnhctRnmMhpL9J53vTRi52mwzB9vQ:+1cjnDnL9J53vFi52mw3vQ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-