General
-
Target
c44f551e1b950f367d63ddaf30b3761a617c85e6af9b2df4af587b1b75ff5262
-
Size
288KB
-
Sample
221205-mqxfzabf24
-
MD5
680bf41dc20aa76054829a89cbaeb0d5
-
SHA1
0a78b2ecec3fb479263645f220d2e078cb74d550
-
SHA256
c44f551e1b950f367d63ddaf30b3761a617c85e6af9b2df4af587b1b75ff5262
-
SHA512
77c233df625ca8259d1d42e048a2f10a5efa375c3ed9bf6d9b599ee23f5ec96c15b05a037a00fa92b33574850e245e392523fd020b0d5b9949e543ed95aad8b2
-
SSDEEP
6144:tUauKA2lqKhG0wF+kAbUtshbrm3X+DLKlzNgGVRwZBf5Wg9w9CXvn1OHyaFvF+5B:tA/TJabvhfm3XJ1timTs
Malware Config
Targets
-
-
Target
c44f551e1b950f367d63ddaf30b3761a617c85e6af9b2df4af587b1b75ff5262
-
Size
288KB
-
MD5
680bf41dc20aa76054829a89cbaeb0d5
-
SHA1
0a78b2ecec3fb479263645f220d2e078cb74d550
-
SHA256
c44f551e1b950f367d63ddaf30b3761a617c85e6af9b2df4af587b1b75ff5262
-
SHA512
77c233df625ca8259d1d42e048a2f10a5efa375c3ed9bf6d9b599ee23f5ec96c15b05a037a00fa92b33574850e245e392523fd020b0d5b9949e543ed95aad8b2
-
SSDEEP
6144:tUauKA2lqKhG0wF+kAbUtshbrm3X+DLKlzNgGVRwZBf5Wg9w9CXvn1OHyaFvF+5B:tA/TJabvhfm3XJ1timTs
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-