General
-
Target
file.exe
-
Size
1.3MB
-
Sample
230111-fypmrsec9y
-
MD5
6e1765f256dc4a88df41f286899bfbfe
-
SHA1
1d0aec2dd9e12676b4632116f6227c033ca3d3c0
-
SHA256
dec6ca20cf60d7b56f5e2e91dcc1e951cab9fd9628b27fd0180bad829fe424ca
-
SHA512
9f29e2358c387383a8c3498c4c737f36a784dd682d778476ade82bc8ee4d682d31d933d888d8d5dd6e85b054bbd7d272533880895edd268367e7b57e3071993d
-
SSDEEP
24576:q20IWmgU0BBsi6TIYOMPRiAwkQOjv+gPZOhZviNmjgXC75ld1qSVpk:q2AU03simOiRkT60ZvrHd1qapk
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20220901-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.3MB
-
MD5
6e1765f256dc4a88df41f286899bfbfe
-
SHA1
1d0aec2dd9e12676b4632116f6227c033ca3d3c0
-
SHA256
dec6ca20cf60d7b56f5e2e91dcc1e951cab9fd9628b27fd0180bad829fe424ca
-
SHA512
9f29e2358c387383a8c3498c4c737f36a784dd682d778476ade82bc8ee4d682d31d933d888d8d5dd6e85b054bbd7d272533880895edd268367e7b57e3071993d
-
SSDEEP
24576:q20IWmgU0BBsi6TIYOMPRiAwkQOjv+gPZOhZviNmjgXC75ld1qSVpk:q2AU03simOiRkT60ZvrHd1qapk
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-