General
-
Target
7fb411ee3e34e4b79b372b7d2321bf69b46de30c3286edccb7621562caefb60b
-
Size
3.9MB
-
Sample
230328-wdgdnacc96
-
MD5
a8001f151c1ce13aac56097a2bf1f789
-
SHA1
414d9f4219570bc75eb6e6cf2932c4fb407afa56
-
SHA256
7fb411ee3e34e4b79b372b7d2321bf69b46de30c3286edccb7621562caefb60b
-
SHA512
9c20f91c378d9559f6e5115857401def02145bb665a4c64f7842175b077bb6406544caa8197c9713f9b22943ffd87405beb809cf0e684c53b934acfe8d421060
-
SSDEEP
49152:ZHVpQMSWLLKUmQUSgYaNrb5c90DNQdjK/c0kCs:Z1pjSWL5
Static task
static1
Malware Config
Targets
-
-
Target
7fb411ee3e34e4b79b372b7d2321bf69b46de30c3286edccb7621562caefb60b
-
Size
3.9MB
-
MD5
a8001f151c1ce13aac56097a2bf1f789
-
SHA1
414d9f4219570bc75eb6e6cf2932c4fb407afa56
-
SHA256
7fb411ee3e34e4b79b372b7d2321bf69b46de30c3286edccb7621562caefb60b
-
SHA512
9c20f91c378d9559f6e5115857401def02145bb665a4c64f7842175b077bb6406544caa8197c9713f9b22943ffd87405beb809cf0e684c53b934acfe8d421060
-
SSDEEP
49152:ZHVpQMSWLLKUmQUSgYaNrb5c90DNQdjK/c0kCs:Z1pjSWL5
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Suspicious use of SetThreadContext
-