General
-
Target
b10054de71813656d21fb53581639c7f972a37094df4d2f953dd07cd55f199ec
-
Size
304KB
-
Sample
221207-dx3rwsdg4y
-
MD5
59e6e59d0431a5404e0e0fbd92a75d67
-
SHA1
461dba924992557c8829895ef671b3c976d379f5
-
SHA256
b10054de71813656d21fb53581639c7f972a37094df4d2f953dd07cd55f199ec
-
SHA512
c20174293b68388c98974f0c8e1a0657d5bb42b7d8096c486e077b97cc1718c3aa5b45879b90d2ac773c230b36b07a959eeee3bfbd239352a494a4da6fe55d24
-
SSDEEP
6144:kFrnSO+BM7LIdvk9B1aKzhsMXcAxREoZPmbw0/8GHjTllRSxsn3B0OoepyYjHQ5K:KrnrB1aKzhsMXRxREUPmbxXv3BHBdjHm
Malware Config
Targets
-
-
Target
b10054de71813656d21fb53581639c7f972a37094df4d2f953dd07cd55f199ec
-
Size
304KB
-
MD5
59e6e59d0431a5404e0e0fbd92a75d67
-
SHA1
461dba924992557c8829895ef671b3c976d379f5
-
SHA256
b10054de71813656d21fb53581639c7f972a37094df4d2f953dd07cd55f199ec
-
SHA512
c20174293b68388c98974f0c8e1a0657d5bb42b7d8096c486e077b97cc1718c3aa5b45879b90d2ac773c230b36b07a959eeee3bfbd239352a494a4da6fe55d24
-
SSDEEP
6144:kFrnSO+BM7LIdvk9B1aKzhsMXcAxREoZPmbw0/8GHjTllRSxsn3B0OoepyYjHQ5K:KrnrB1aKzhsMXRxREUPmbxXv3BHBdjHm
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-