General
-
Target
ee00c1b00da0611852d212ed564a5f7d33e2c1ece3b9566e794b4380bf5bbce0
-
Size
288KB
-
Sample
221207-d246hsbe89
-
MD5
7dff8e3d172e4ea44ab95896de23173a
-
SHA1
ef4f77bab3d39d17fd5298e395c2dd8888ddd4e3
-
SHA256
ee00c1b00da0611852d212ed564a5f7d33e2c1ece3b9566e794b4380bf5bbce0
-
SHA512
17dd9d4345b9137665a18a1b357972522c60ed3c3c57ce679311a905f31beca2a7e8d839e11b7d3d1b214bd4bd5b47276d4c08f8e69bf15af1e3640e658a4055
-
SSDEEP
6144:tUKuK62lqKhG0wF+kAbUtshbrm3X+DLKlzNgGVRwZBf5Wg9w9CXvn1OHyaFvF+5H:t05TJabvhfm3XJ1tisTs
Malware Config
Targets
-
-
Target
ee00c1b00da0611852d212ed564a5f7d33e2c1ece3b9566e794b4380bf5bbce0
-
Size
288KB
-
MD5
7dff8e3d172e4ea44ab95896de23173a
-
SHA1
ef4f77bab3d39d17fd5298e395c2dd8888ddd4e3
-
SHA256
ee00c1b00da0611852d212ed564a5f7d33e2c1ece3b9566e794b4380bf5bbce0
-
SHA512
17dd9d4345b9137665a18a1b357972522c60ed3c3c57ce679311a905f31beca2a7e8d839e11b7d3d1b214bd4bd5b47276d4c08f8e69bf15af1e3640e658a4055
-
SSDEEP
6144:tUKuK62lqKhG0wF+kAbUtshbrm3X+DLKlzNgGVRwZBf5Wg9w9CXvn1OHyaFvF+5H:t05TJabvhfm3XJ1tisTs
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-