General
-
Target
5526122137c74b3cb6c8ca74738db01a077839d5331d2fbefb6fb72bbdea41bd
-
Size
1.2MB
-
Sample
230423-3ayl4age36
-
MD5
d28818589997dec09b3cc93d88bc0079
-
SHA1
33c0ced6204152eb37a84e38f7a03f5f19047ad5
-
SHA256
5526122137c74b3cb6c8ca74738db01a077839d5331d2fbefb6fb72bbdea41bd
-
SHA512
07922c9b1d28a224bd9c3ea3195b7285cc7cf072ceb5db060ccd96e703cf34725ebf80128c7b5635c75933fc100b1b8aa299907d0c42ff04fb2502ce5957746c
-
SSDEEP
24576:Bu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:40+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
5526122137c74b3cb6c8ca74738db01a077839d5331d2fbefb6fb72bbdea41bd
-
Size
1.2MB
-
MD5
d28818589997dec09b3cc93d88bc0079
-
SHA1
33c0ced6204152eb37a84e38f7a03f5f19047ad5
-
SHA256
5526122137c74b3cb6c8ca74738db01a077839d5331d2fbefb6fb72bbdea41bd
-
SHA512
07922c9b1d28a224bd9c3ea3195b7285cc7cf072ceb5db060ccd96e703cf34725ebf80128c7b5635c75933fc100b1b8aa299907d0c42ff04fb2502ce5957746c
-
SSDEEP
24576:Bu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:40+BshUC1VzUjjPP0/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-