General
-
Target
a80d969307b51727fd60d0328452ece13bec8bb3a7a4dc2972dbbab673cf5c7e
-
Size
558KB
-
Sample
230207-cl7q2acb8s
-
MD5
99267562e50ff913fb07a8e88014bd42
-
SHA1
533fac75fa1564ed721cfd2f3b3fc6a58586adf4
-
SHA256
a80d969307b51727fd60d0328452ece13bec8bb3a7a4dc2972dbbab673cf5c7e
-
SHA512
3c34c736d2a6089113c210834f2f7c38258592277b4729f841fd8b9560a27714b9ceeecab8800d8b5eef1482dabc587ee187332490381e0a252ce943b539aa65
-
SSDEEP
12288:bMrny90QWMgSC+cZNOCuHsOKMxDiH8SqfcZNM:4y0JT+caCuHsO3xucb+NM
Static task
static1
Behavioral task
behavioral1
Sample
a80d969307b51727fd60d0328452ece13bec8bb3a7a4dc2972dbbab673cf5c7e.exe
Resource
win10v2004-20221111-en
Malware Config
Extracted
amadey
3.66
62.204.41.4/Gol478Ns/index.php
Targets
-
-
Target
a80d969307b51727fd60d0328452ece13bec8bb3a7a4dc2972dbbab673cf5c7e
-
Size
558KB
-
MD5
99267562e50ff913fb07a8e88014bd42
-
SHA1
533fac75fa1564ed721cfd2f3b3fc6a58586adf4
-
SHA256
a80d969307b51727fd60d0328452ece13bec8bb3a7a4dc2972dbbab673cf5c7e
-
SHA512
3c34c736d2a6089113c210834f2f7c38258592277b4729f841fd8b9560a27714b9ceeecab8800d8b5eef1482dabc587ee187332490381e0a252ce943b539aa65
-
SSDEEP
12288:bMrny90QWMgSC+cZNOCuHsOKMxDiH8SqfcZNM:4y0JT+caCuHsO3xucb+NM
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-