General
-
Target
a2235df46cd1c36aa66a4d73bc23bd94efe6b696be1532595deed7aab82b45dc
-
Size
558KB
-
Sample
230207-b416jacb2s
-
MD5
4a583d6fc139cd933fc5756f5934466d
-
SHA1
c3367d44d65578f290cc41911e8069125efe16c9
-
SHA256
a2235df46cd1c36aa66a4d73bc23bd94efe6b696be1532595deed7aab82b45dc
-
SHA512
f5bcd6ab4fe19002e67c4b95e0960b4ede1bec99db1780316192d915e22a75ded6d2b6e6eca0c668600716f38f237f3fd2bc73353f4284f86b3d010881041c36
-
SSDEEP
12288:gMrPy90FA3sKtviLNNnd+RZhbegCm7sOkXLqDUb:/ywA8KFIXA7R/Cm7sOqLs8
Static task
static1
Behavioral task
behavioral1
Sample
a2235df46cd1c36aa66a4d73bc23bd94efe6b696be1532595deed7aab82b45dc.exe
Resource
win10v2004-20220901-en
Malware Config
Extracted
amadey
3.66
62.204.41.4/Gol478Ns/index.php
Targets
-
-
Target
a2235df46cd1c36aa66a4d73bc23bd94efe6b696be1532595deed7aab82b45dc
-
Size
558KB
-
MD5
4a583d6fc139cd933fc5756f5934466d
-
SHA1
c3367d44d65578f290cc41911e8069125efe16c9
-
SHA256
a2235df46cd1c36aa66a4d73bc23bd94efe6b696be1532595deed7aab82b45dc
-
SHA512
f5bcd6ab4fe19002e67c4b95e0960b4ede1bec99db1780316192d915e22a75ded6d2b6e6eca0c668600716f38f237f3fd2bc73353f4284f86b3d010881041c36
-
SSDEEP
12288:gMrPy90FA3sKtviLNNnd+RZhbegCm7sOkXLqDUb:/ywA8KFIXA7R/Cm7sOqLs8
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-