General
-
Target
file.exe
-
Size
1.1MB
-
Sample
230110-yhhtdsdb4z
-
MD5
1d68569c35fe83a6757aaa19953871be
-
SHA1
8dfdee1d4e6876c41bb656a99c129f73aa40ae40
-
SHA256
1387d634fa1ace36b555b559263e2484fdaf2acf03c816957b61aeba82da103e
-
SHA512
20b14ae5b573d87c8de7d74da5f5f28ca272a62bf5e8cc422fb59448c4487c698196f67aa316e8462c824543bef48e68d5ca76b675df95d2551d08d9c706d21b
-
SSDEEP
24576:R20r4L9rDikvVd6nuk6mRbpCUA3enby8IPJB6Uy6OSkl5l/Hld:R2f9XbrxkcnebyHJhy6Ml5V
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220812-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.1MB
-
MD5
1d68569c35fe83a6757aaa19953871be
-
SHA1
8dfdee1d4e6876c41bb656a99c129f73aa40ae40
-
SHA256
1387d634fa1ace36b555b559263e2484fdaf2acf03c816957b61aeba82da103e
-
SHA512
20b14ae5b573d87c8de7d74da5f5f28ca272a62bf5e8cc422fb59448c4487c698196f67aa316e8462c824543bef48e68d5ca76b675df95d2551d08d9c706d21b
-
SSDEEP
24576:R20r4L9rDikvVd6nuk6mRbpCUA3enby8IPJB6Uy6OSkl5l/Hld:R2f9XbrxkcnebyHJhy6Ml5V
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-