General
-
Target
934c378b91cc6fc8c90cd279bbaf4e5f0a2f897056e3a9e98464e71c573d84ce
-
Size
200KB
-
Sample
221205-mxxqbacc34
-
MD5
cd5fbd335b75b93a7962249464d6fd9d
-
SHA1
149f0a0b4f3015c6552ec77481ba34ccaab3e5c5
-
SHA256
934c378b91cc6fc8c90cd279bbaf4e5f0a2f897056e3a9e98464e71c573d84ce
-
SHA512
3dd64c4ef1f1e2459bf5fba8c4f96f0e8dd2928e3e9b0396614ac342d76bd2e2ef757f989b02a4f1e480eabf7f3dbbdb4be2228661cf9fb75ea8af7574268642
-
SSDEEP
3072:lRnTo/05W4q0tQ9nLHbB9WBJiBs2HWWEaPGJm9bkS:lReWq4QxL7B9WBJi+yWWEaUQp
Malware Config
Targets
-
-
Target
934c378b91cc6fc8c90cd279bbaf4e5f0a2f897056e3a9e98464e71c573d84ce
-
Size
200KB
-
MD5
cd5fbd335b75b93a7962249464d6fd9d
-
SHA1
149f0a0b4f3015c6552ec77481ba34ccaab3e5c5
-
SHA256
934c378b91cc6fc8c90cd279bbaf4e5f0a2f897056e3a9e98464e71c573d84ce
-
SHA512
3dd64c4ef1f1e2459bf5fba8c4f96f0e8dd2928e3e9b0396614ac342d76bd2e2ef757f989b02a4f1e480eabf7f3dbbdb4be2228661cf9fb75ea8af7574268642
-
SSDEEP
3072:lRnTo/05W4q0tQ9nLHbB9WBJiBs2HWWEaPGJm9bkS:lReWq4QxL7B9WBJi+yWWEaUQp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-