General
-
Target
5b164ab457f4508a18a316fb66c0c79f02c14ca8783e0ca956cec214c6802cde
-
Size
280KB
-
Sample
221207-dyl6jabc28
-
MD5
d983b928af81f90f370b34829ecd378e
-
SHA1
60b867ed448be767a39e6d59826c20b8269c0424
-
SHA256
5b164ab457f4508a18a316fb66c0c79f02c14ca8783e0ca956cec214c6802cde
-
SHA512
2404b96325e48140d55e8f59dad4958aa8d7215446f53eb15f96dc20b688d4204d1f2663b152eed45963817d67471d3297a40ad55cd793dccec9966cf17e0f7e
-
SSDEEP
6144:nSbh6Ah3sfYz5YD97y6KsHvU+bhz9utdXezAXIfzEzZChdfuZaB7eD2sy4GExXaM:nS0GXJOxFf4h4Y5ywxR
Malware Config
Targets
-
-
Target
5b164ab457f4508a18a316fb66c0c79f02c14ca8783e0ca956cec214c6802cde
-
Size
280KB
-
MD5
d983b928af81f90f370b34829ecd378e
-
SHA1
60b867ed448be767a39e6d59826c20b8269c0424
-
SHA256
5b164ab457f4508a18a316fb66c0c79f02c14ca8783e0ca956cec214c6802cde
-
SHA512
2404b96325e48140d55e8f59dad4958aa8d7215446f53eb15f96dc20b688d4204d1f2663b152eed45963817d67471d3297a40ad55cd793dccec9966cf17e0f7e
-
SSDEEP
6144:nSbh6Ah3sfYz5YD97y6KsHvU+bhz9utdXezAXIfzEzZChdfuZaB7eD2sy4GExXaM:nS0GXJOxFf4h4Y5ywxR
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-