General
-
Target
file.exe
-
Size
1.1MB
-
Sample
230110-wlv7sagg97
-
MD5
8aba67f9683dd2043cb6338b3892a2c9
-
SHA1
6d60c7085155fc11d1aa187fefa25722acde7fab
-
SHA256
2c428b1e3886ecc2e75dc048b3d3204bbb7aef493a755db84fdcb49af86ec776
-
SHA512
f9beb2fe07e2d1643b64ea9bf3e427d89c462d4a88026dcb931925b860d4ebc17683f505082cd1566f6afff9e64e4f4b0a8180928efc26b0f9a030454e99963c
-
SSDEEP
24576:R20KMEKljYo0VAiU6yXJWZhxPTO5bI0qWXvvVbmQ4Skl5l/Hld:R2kxjY7OJWZhlTOJRqWfNaQul5V
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.1MB
-
MD5
8aba67f9683dd2043cb6338b3892a2c9
-
SHA1
6d60c7085155fc11d1aa187fefa25722acde7fab
-
SHA256
2c428b1e3886ecc2e75dc048b3d3204bbb7aef493a755db84fdcb49af86ec776
-
SHA512
f9beb2fe07e2d1643b64ea9bf3e427d89c462d4a88026dcb931925b860d4ebc17683f505082cd1566f6afff9e64e4f4b0a8180928efc26b0f9a030454e99963c
-
SSDEEP
24576:R20KMEKljYo0VAiU6yXJWZhxPTO5bI0qWXvvVbmQ4Skl5l/Hld:R2kxjY7OJWZhlTOJRqWfNaQul5V
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-