General
-
Target
fcd947b07fecaf13e1e4b81db05f7c8befdfb22e01a258d9ebb3bf191bed1d65
-
Size
277KB
-
Sample
230328-plkbysah98
-
MD5
8d0409cb9007f0a8c0b410d758494110
-
SHA1
7b8bb64b8bc45570a051ebefae4240a7f42d864a
-
SHA256
fcd947b07fecaf13e1e4b81db05f7c8befdfb22e01a258d9ebb3bf191bed1d65
-
SHA512
4f4d371c84490b06f998e9a88d7b9c00101e2cdd999dcb4ca7cc23a936f048f4d2dcee251125d471b187c4e0146729d0450a207f41a19bdd1cd391d5fa201a9d
-
SSDEEP
3072:RNXEGZJWhfNFC4S60+XoLczrVmXkpu2a37gCggW3KhEfVEoSQDrZanH01ne4PKWD:vXzKdNY49u8rVP07xifVEoSErW01netg
Malware Config
Targets
-
-
Target
fcd947b07fecaf13e1e4b81db05f7c8befdfb22e01a258d9ebb3bf191bed1d65
-
Size
277KB
-
MD5
8d0409cb9007f0a8c0b410d758494110
-
SHA1
7b8bb64b8bc45570a051ebefae4240a7f42d864a
-
SHA256
fcd947b07fecaf13e1e4b81db05f7c8befdfb22e01a258d9ebb3bf191bed1d65
-
SHA512
4f4d371c84490b06f998e9a88d7b9c00101e2cdd999dcb4ca7cc23a936f048f4d2dcee251125d471b187c4e0146729d0450a207f41a19bdd1cd391d5fa201a9d
-
SSDEEP
3072:RNXEGZJWhfNFC4S60+XoLczrVmXkpu2a37gCggW3KhEfVEoSQDrZanH01ne4PKWD:vXzKdNY49u8rVP07xifVEoSErW01netg
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-