General
-
Target
Synx Launcher.zip
-
Size
183KB
-
Sample
230331-fdbkeahh9t
-
MD5
78fd7ff68e04e6ca0442d2eb8dcb3a33
-
SHA1
ab65bc1f384ed43db175d22fce8db0a8d2ed5947
-
SHA256
67424f06b6aeb1b9b4761bf9de97893e2b92484d24f9feb77dd901012d54f524
-
SHA512
e52f39dcb8fbdeff3a1fa4c4749bf8787023013e3c3460918e45c4eddea0594e4439e1e2d6d6c0e2f630e1cca2bd1fb027fb4bce0242f688d15b22e2e2608e05
-
SSDEEP
3072:EVZXwleyBsIFO789+HXGGOO5om69bGGyLKQ9rVXvmVWmK+upEza0WuMPVP1q9Kg9:cXwleyBXGYuWGBLmbmLpJ0Wmi+mPV9KN
Static task
static1
Behavioral task
behavioral1
Sample
SX/SX Launcher.exe
Resource
win7-20230220-en
Behavioral task
behavioral2
Sample
SX/SX Launcher.exe
Resource
win10v2004-20230220-en
Malware Config
Targets
-
-
Target
SX/SX Launcher.exe
-
Size
574KB
-
MD5
d815865c44760e6348eb2abf73a5db84
-
SHA1
44356251a6f124ad23ad8ecbc45e766bfca795c8
-
SHA256
94bc94016f2e858a125227d7d3a2dc2daa73c01b97e1dbccb851e91932c38c57
-
SHA512
780a6cb37b5505e04eb13c4c8421cc5485052792ba5c037315499c72d8c8efc11f1237c7e01d590df6e9b98da7dfaca83921f98f80abccb80debef3442e97d38
-
SSDEEP
12288:MWVj2euBCYu/BJ2jBxZK5Yu/BJ22Vj2euB:NVj2euB/y4ZKyyXVj2euB
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-