General
-
Target
file.exe
-
Size
1.9MB
-
Sample
221223-w52tnsgh45
-
MD5
f838a2b81123b1d1b4810b1f1294836f
-
SHA1
69f540b7c54aa15a25d8f30e0a570a46f70f4dc2
-
SHA256
b2a199d04c96a11f59aef0631204eeebd1ca322ca22d722ac8ae2ce043cefb76
-
SHA512
cf34489e72d85a34a5fe15ced28f8ca562c8e4f1b2e0aed515764dd40f81c6dd22806b711ae1d47ee8fbb663989468a1f4a17ea9d482becc93519efcba849b7a
-
SSDEEP
49152:bQGFbTImJ5kq8WR51oYyFj4gTBmuWaX1FNdYWP7p3d:b4mJMWloYJgTouWatqGdd
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.9MB
-
MD5
f838a2b81123b1d1b4810b1f1294836f
-
SHA1
69f540b7c54aa15a25d8f30e0a570a46f70f4dc2
-
SHA256
b2a199d04c96a11f59aef0631204eeebd1ca322ca22d722ac8ae2ce043cefb76
-
SHA512
cf34489e72d85a34a5fe15ced28f8ca562c8e4f1b2e0aed515764dd40f81c6dd22806b711ae1d47ee8fbb663989468a1f4a17ea9d482becc93519efcba849b7a
-
SSDEEP
49152:bQGFbTImJ5kq8WR51oYyFj4gTBmuWaX1FNdYWP7p3d:b4mJMWloYJgTouWatqGdd
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-