General
-
Target
83de77b8a7dbc8424d2754a919350c326eb4062284ed020a0741470af40e6927
-
Size
1.2MB
-
Sample
230423-1acnhsga57
-
MD5
48eee385d42a7e074ed8e2ba53d6c171
-
SHA1
0efb0210c0a30d744f6fcf1ec20c4607fdee4f01
-
SHA256
83de77b8a7dbc8424d2754a919350c326eb4062284ed020a0741470af40e6927
-
SHA512
b0ef24044446e6853c860f115cbd2f88c8d588cdd93082aceedaca430b4ad4b2b0b2e8d215192d121e3e73e1e8e6cab0c93f47b29fec22fd015a77c8af7fd6d9
-
SSDEEP
24576:Xu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:e0+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
83de77b8a7dbc8424d2754a919350c326eb4062284ed020a0741470af40e6927
-
Size
1.2MB
-
MD5
48eee385d42a7e074ed8e2ba53d6c171
-
SHA1
0efb0210c0a30d744f6fcf1ec20c4607fdee4f01
-
SHA256
83de77b8a7dbc8424d2754a919350c326eb4062284ed020a0741470af40e6927
-
SHA512
b0ef24044446e6853c860f115cbd2f88c8d588cdd93082aceedaca430b4ad4b2b0b2e8d215192d121e3e73e1e8e6cab0c93f47b29fec22fd015a77c8af7fd6d9
-
SSDEEP
24576:Xu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:e0+BshUC1VzUjjPP0/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-