General
-
Target
34fe40271708ffa84fd3985350ebc10bfb4734e0e7896550c3a753cd88761fe2
-
Size
577KB
-
Sample
230206-sl7c9see76
-
MD5
e7e77b0c6e77c230703353a7991eb014
-
SHA1
55cb367284458b8e712fc5ac5579bed44f6cf6f9
-
SHA256
34fe40271708ffa84fd3985350ebc10bfb4734e0e7896550c3a753cd88761fe2
-
SHA512
97518c9100ba27419b38a4c19d0f433df38eae1853f47c46642fc6df4e6c53aa119f5bc4f68db886408f59eb0cc4198d667d3561bfce50cc2b1866ac0110389e
-
SSDEEP
12288:VMrFy90w6Ph+O9nuVBrFVOqGUJvigQmVNAqSZiZ:My2oknuJtGO6mV6qSY
Static task
static1
Behavioral task
behavioral1
Sample
34fe40271708ffa84fd3985350ebc10bfb4734e0e7896550c3a753cd88761fe2.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
amadey
3.66
62.204.41.5/Bu58Ngs/index.php
Targets
-
-
Target
34fe40271708ffa84fd3985350ebc10bfb4734e0e7896550c3a753cd88761fe2
-
Size
577KB
-
MD5
e7e77b0c6e77c230703353a7991eb014
-
SHA1
55cb367284458b8e712fc5ac5579bed44f6cf6f9
-
SHA256
34fe40271708ffa84fd3985350ebc10bfb4734e0e7896550c3a753cd88761fe2
-
SHA512
97518c9100ba27419b38a4c19d0f433df38eae1853f47c46642fc6df4e6c53aa119f5bc4f68db886408f59eb0cc4198d667d3561bfce50cc2b1866ac0110389e
-
SSDEEP
12288:VMrFy90w6Ph+O9nuVBrFVOqGUJvigQmVNAqSZiZ:My2oknuJtGO6mV6qSY
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-