General
-
Target
803853669515bfa17050e02ef9074acf3d5d68b1b9043196dfe4f483306cc2be
-
Size
200KB
-
Sample
221207-c6d98agg46
-
MD5
138cb66ce783d31d377b47f8b8e48441
-
SHA1
95176afca9fa70f41ffae1ca3f1c7b147d659cf3
-
SHA256
803853669515bfa17050e02ef9074acf3d5d68b1b9043196dfe4f483306cc2be
-
SHA512
a0fafa2b3e11665956a4292783b8c693ca576e579bb754f344e60e03594f613e14301bae15e4f961c89d0389a6e320cebd9750cb695b360eedaffe99d16ce988
-
SSDEEP
3072:UTtcstTstk/pSBAFtbCduLCADMcgg7keGdJu:8tcATstk/pp2ADMVCwJ
Malware Config
Targets
-
-
Target
803853669515bfa17050e02ef9074acf3d5d68b1b9043196dfe4f483306cc2be
-
Size
200KB
-
MD5
138cb66ce783d31d377b47f8b8e48441
-
SHA1
95176afca9fa70f41ffae1ca3f1c7b147d659cf3
-
SHA256
803853669515bfa17050e02ef9074acf3d5d68b1b9043196dfe4f483306cc2be
-
SHA512
a0fafa2b3e11665956a4292783b8c693ca576e579bb754f344e60e03594f613e14301bae15e4f961c89d0389a6e320cebd9750cb695b360eedaffe99d16ce988
-
SSDEEP
3072:UTtcstTstk/pSBAFtbCduLCADMcgg7keGdJu:8tcATstk/pp2ADMVCwJ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-