General
-
Target
file.exe
-
Size
1.1MB
-
Sample
230110-s99hjacd4t
-
MD5
d69a180ab14a9e4686e6445a1ca9542f
-
SHA1
a34dfa60d247a275ef91c8c3428bb4177929df3c
-
SHA256
f085017e5b6f0d18d377628461b1d00160a117f48bcc85efac1c4355633c0ed1
-
SHA512
ad44ad9577c206a77c1b70b5476a6555970fb001f595037f357f8f69e2ddb829a7d63ab28d7feb46fd6df3b8f03b0307a21387eaed3e8a83fc855686848a9a8f
-
SSDEEP
24576:R20gPvLa1pe9zaisAPTQzSnlQswQSvhCJoTFHYxerSkl5l/Hld:R2pLaXKP8sPwn5BWgnl5V
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win10-20220812-en
Behavioral task
behavioral2
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.1MB
-
MD5
d69a180ab14a9e4686e6445a1ca9542f
-
SHA1
a34dfa60d247a275ef91c8c3428bb4177929df3c
-
SHA256
f085017e5b6f0d18d377628461b1d00160a117f48bcc85efac1c4355633c0ed1
-
SHA512
ad44ad9577c206a77c1b70b5476a6555970fb001f595037f357f8f69e2ddb829a7d63ab28d7feb46fd6df3b8f03b0307a21387eaed3e8a83fc855686848a9a8f
-
SSDEEP
24576:R20gPvLa1pe9zaisAPTQzSnlQswQSvhCJoTFHYxerSkl5l/Hld:R2pLaXKP8sPwn5BWgnl5V
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-