General
-
Target
file.exe
-
Size
1.1MB
-
Sample
230110-q3jbnaca71
-
MD5
5a5d4b759f82b5e845018e1bd404e5f5
-
SHA1
e82e42450d6348659fc927547392269a3dd824c7
-
SHA256
f75725a0b68fcc99f81e967f9ab170d388cda7b8b3c09056bbb4e94eaadd5742
-
SHA512
6783b39670f3cf6713f867506cc438f9237c1e96a044a152222bac9caf378086a539cc6db14ffe57b68fed40fb0c7727e48338ed4acbf50ade8b8962fb7d2d09
-
SSDEEP
24576:R20+WBOAndYm6+J8LFepvlzehp+Db+/r3EqSkl5l/Hld:R23An/6IlpvhOpkbYrfl5V
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20221111-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.1MB
-
MD5
5a5d4b759f82b5e845018e1bd404e5f5
-
SHA1
e82e42450d6348659fc927547392269a3dd824c7
-
SHA256
f75725a0b68fcc99f81e967f9ab170d388cda7b8b3c09056bbb4e94eaadd5742
-
SHA512
6783b39670f3cf6713f867506cc438f9237c1e96a044a152222bac9caf378086a539cc6db14ffe57b68fed40fb0c7727e48338ed4acbf50ade8b8962fb7d2d09
-
SSDEEP
24576:R20+WBOAndYm6+J8LFepvlzehp+Db+/r3EqSkl5l/Hld:R23An/6IlpvhOpkbYrfl5V
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-