General
-
Target
9ee8dd372df2d47adee0374ff65255cdbf766fdd669c5441ad488d22ddbd4966
-
Size
256KB
-
Sample
221205-mrst6sfd4s
-
MD5
43d34709aa997edbfe8327fba2957f12
-
SHA1
bd62aebe586e7ba19a4579aafab6c10d599bd436
-
SHA256
9ee8dd372df2d47adee0374ff65255cdbf766fdd669c5441ad488d22ddbd4966
-
SHA512
e1f82ed42f8a30c73e10769cbaab8fdf849c2a1877a5f6f905e558df062bbd58f2e0dc7a6ce5dee778f2f9096b7db6ab6a3c57fdd7122d4ce96160405f01230f
-
SSDEEP
3072:VraH9QMByfSd7yBov5dRvm7GG3n8P1R4qYVWdVIQk1rgXfhc:ZaH9QSeohCj341aqy5QK
Malware Config
Targets
-
-
Target
9ee8dd372df2d47adee0374ff65255cdbf766fdd669c5441ad488d22ddbd4966
-
Size
256KB
-
MD5
43d34709aa997edbfe8327fba2957f12
-
SHA1
bd62aebe586e7ba19a4579aafab6c10d599bd436
-
SHA256
9ee8dd372df2d47adee0374ff65255cdbf766fdd669c5441ad488d22ddbd4966
-
SHA512
e1f82ed42f8a30c73e10769cbaab8fdf849c2a1877a5f6f905e558df062bbd58f2e0dc7a6ce5dee778f2f9096b7db6ab6a3c57fdd7122d4ce96160405f01230f
-
SSDEEP
3072:VraH9QMByfSd7yBov5dRvm7GG3n8P1R4qYVWdVIQk1rgXfhc:ZaH9QSeohCj341aqy5QK
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-