General
-
Target
f97c3857cae0a0ed686f82e576a804941ca5310b5ec35da27392364947db292e
-
Size
260KB
-
Sample
221207-dtln7sdd8v
-
MD5
af0efe3f06757b5e700df117d3403823
-
SHA1
1bd42d8a5a54b5b68bb392754c3b95c48dd15107
-
SHA256
f97c3857cae0a0ed686f82e576a804941ca5310b5ec35da27392364947db292e
-
SHA512
cfdf5239d2c2007d07dcd5b37a387dbd8c3321fa45c91722388be6963754e3d0649d1093d96a7d5c6ac7af3394586a75a4b2467d860b8e88da6717dbf1f3b20e
-
SSDEEP
6144:cav3M5ek/pqeQgBjEVdgupzywmsGFeeRDDGc:/3M5//pqwjMdgupzypVDf
Malware Config
Targets
-
-
Target
f97c3857cae0a0ed686f82e576a804941ca5310b5ec35da27392364947db292e
-
Size
260KB
-
MD5
af0efe3f06757b5e700df117d3403823
-
SHA1
1bd42d8a5a54b5b68bb392754c3b95c48dd15107
-
SHA256
f97c3857cae0a0ed686f82e576a804941ca5310b5ec35da27392364947db292e
-
SHA512
cfdf5239d2c2007d07dcd5b37a387dbd8c3321fa45c91722388be6963754e3d0649d1093d96a7d5c6ac7af3394586a75a4b2467d860b8e88da6717dbf1f3b20e
-
SSDEEP
6144:cav3M5ek/pqeQgBjEVdgupzywmsGFeeRDDGc:/3M5//pqwjMdgupzypVDf
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-