General
-
Target
eecede63668c4dec684bfc2fecd1c11aed6966ba514c55d0a90d8a575b4d1ca3.exe
-
Size
1.6MB
-
Sample
221222-2xshxsaf41
-
MD5
1157f1128cfb61dbd793df38c3341278
-
SHA1
156600c933501fe8fc6d545ee4a38cc9f8e5bffe
-
SHA256
eecede63668c4dec684bfc2fecd1c11aed6966ba514c55d0a90d8a575b4d1ca3
-
SHA512
ba513bb01062173a45fb091d61791c7d0740ab8a4654ca744563e69fc16361e41897e476a1e7df815926c0c2ff1840ade2b45205f06ff4d8bc1ded2f3f9d5490
-
SSDEEP
49152:CXzUDxJegdBuVQuyKiqEnm8MESbs3VdNeViX:CDUDxJegdXw0nDlQyMiX
Static task
static1
Behavioral task
behavioral1
Sample
eecede63668c4dec684bfc2fecd1c11aed6966ba514c55d0a90d8a575b4d1ca3.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
eecede63668c4dec684bfc2fecd1c11aed6966ba514c55d0a90d8a575b4d1ca3.exe
-
Size
1.6MB
-
MD5
1157f1128cfb61dbd793df38c3341278
-
SHA1
156600c933501fe8fc6d545ee4a38cc9f8e5bffe
-
SHA256
eecede63668c4dec684bfc2fecd1c11aed6966ba514c55d0a90d8a575b4d1ca3
-
SHA512
ba513bb01062173a45fb091d61791c7d0740ab8a4654ca744563e69fc16361e41897e476a1e7df815926c0c2ff1840ade2b45205f06ff4d8bc1ded2f3f9d5490
-
SSDEEP
49152:CXzUDxJegdBuVQuyKiqEnm8MESbs3VdNeViX:CDUDxJegdXw0nDlQyMiX
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-