General
-
Target
file.exe
-
Size
1.3MB
-
Sample
230111-kpa58sfe51
-
MD5
420748116bad410da6b02c0467825023
-
SHA1
8fea42eddb328562fbdcc290ffdc0c0e9e5350b9
-
SHA256
b72a048ca7d53dd51929f7c5efff4cb24e6a785edd65b85242dd2fc7e80fdfe1
-
SHA512
c9d6af5eeb01ed7ebb72fd1dab91c84c59883d721bd2389871dab53f7d8cbde26251c4467cc6761c981a3bcb28c452beb0b47a00f630494b61af8ab57b0bc619
-
SSDEEP
24576:q20IdF0K93MAcvoHK/fo2KZIZPhFulVcgXC75ld1qSVpk:q2EK93KiK/KZ4h9d1qapk
Static task
static1
Behavioral task
behavioral1
Sample
file.exe
Resource
win7-20221111-en
Malware Config
Extracted
nymaim
45.139.105.171
85.31.46.167
Targets
-
-
Target
file.exe
-
Size
1.3MB
-
MD5
420748116bad410da6b02c0467825023
-
SHA1
8fea42eddb328562fbdcc290ffdc0c0e9e5350b9
-
SHA256
b72a048ca7d53dd51929f7c5efff4cb24e6a785edd65b85242dd2fc7e80fdfe1
-
SHA512
c9d6af5eeb01ed7ebb72fd1dab91c84c59883d721bd2389871dab53f7d8cbde26251c4467cc6761c981a3bcb28c452beb0b47a00f630494b61af8ab57b0bc619
-
SSDEEP
24576:q20IdF0K93MAcvoHK/fo2KZIZPhFulVcgXC75ld1qSVpk:q2EK93KiK/KZ4h9d1qapk
-
Executes dropped EXE
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-