General
-
Target
file.exe
-
Size
1.8MB
-
Sample
221223-rcnzwsbf9s
-
MD5
3663893cdf8cec901c515fa55e47b72d
-
SHA1
fa0a743f73b418b738b37018fd99e26dcaaa36d2
-
SHA256
2a2ac390becdf467469777d64ef38822a9174fecb57fcfe48aad6630f00984e4
-
SHA512
5cb15f899360c64f83d3873b7a7bf663f4523fd38578c03cc1929be969a8bddaff45ad0aa2afd4feb663ba3d45e63b6b5bfc214ed026b9571da54059349b0fdd
-
SSDEEP
49152:btUGP8wSL0Yvu9sjjwm+tG550/51Wqo9YWP7p3j:btDP8wSUsjjhl5WnWGGdj
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20221111-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.8MB
-
MD5
3663893cdf8cec901c515fa55e47b72d
-
SHA1
fa0a743f73b418b738b37018fd99e26dcaaa36d2
-
SHA256
2a2ac390becdf467469777d64ef38822a9174fecb57fcfe48aad6630f00984e4
-
SHA512
5cb15f899360c64f83d3873b7a7bf663f4523fd38578c03cc1929be969a8bddaff45ad0aa2afd4feb663ba3d45e63b6b5bfc214ed026b9571da54059349b0fdd
-
SSDEEP
49152:btUGP8wSL0Yvu9sjjwm+tG550/51Wqo9YWP7p3j:btDP8wSUsjjhl5WnWGGdj
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-