General
-
Target
ca32007533fa8f4b5c13e7eee93f690a286dd6902e8f15bf42f5e9dc950e6d4d
-
Size
573KB
-
Sample
230206-v7vygaac9x
-
MD5
de23b7d51523aa8b27e0f0cf42aa6bd8
-
SHA1
0192cdf6c1a6e4be88dd3457be4ea206acbc5b9c
-
SHA256
ca32007533fa8f4b5c13e7eee93f690a286dd6902e8f15bf42f5e9dc950e6d4d
-
SHA512
257117862c1a7385b387a497932f2fe786fd986544ae3ccc1021e44da269d908d244699339006daaf32c5f356c51c190a0e2977e98ce9ba78d5040f35ec568f8
-
SSDEEP
12288:jMryy90JWrVDH78mnyE/0ttrF/qN0n/tVA8ckL:1yisVLNnBstnA0n/o8ckL
Static task
static1
Behavioral task
behavioral1
Sample
ca32007533fa8f4b5c13e7eee93f690a286dd6902e8f15bf42f5e9dc950e6d4d.exe
Resource
win10v2004-20220901-en
Malware Config
Extracted
amadey
3.66
62.204.41.4/Gol478Ns/index.php
Targets
-
-
Target
ca32007533fa8f4b5c13e7eee93f690a286dd6902e8f15bf42f5e9dc950e6d4d
-
Size
573KB
-
MD5
de23b7d51523aa8b27e0f0cf42aa6bd8
-
SHA1
0192cdf6c1a6e4be88dd3457be4ea206acbc5b9c
-
SHA256
ca32007533fa8f4b5c13e7eee93f690a286dd6902e8f15bf42f5e9dc950e6d4d
-
SHA512
257117862c1a7385b387a497932f2fe786fd986544ae3ccc1021e44da269d908d244699339006daaf32c5f356c51c190a0e2977e98ce9ba78d5040f35ec568f8
-
SSDEEP
12288:jMryy90JWrVDH78mnyE/0ttrF/qN0n/tVA8ckL:1yisVLNnBstnA0n/o8ckL
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-