General
-
Target
25004113773eb2c40675262d325bdd9ee3781281b100816b0c15b65fe8745cfd
-
Size
1.2MB
-
Sample
230423-3cpf7saa7t
-
MD5
1d07c02f0e6dff8fe9df98d3a466cf7d
-
SHA1
52e4a6b23cbf1fae8577cd442015770bcc53a687
-
SHA256
25004113773eb2c40675262d325bdd9ee3781281b100816b0c15b65fe8745cfd
-
SHA512
7488763b5535b932b5a22ba9d8cb1f0a62b06d37e59005cbab0b6257adfe6de63394dc797695cd7be0e427c008702b26b418c877890b9f00ef4397b6a5c463fd
-
SSDEEP
24576:Ju0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:A0+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
25004113773eb2c40675262d325bdd9ee3781281b100816b0c15b65fe8745cfd
-
Size
1.2MB
-
MD5
1d07c02f0e6dff8fe9df98d3a466cf7d
-
SHA1
52e4a6b23cbf1fae8577cd442015770bcc53a687
-
SHA256
25004113773eb2c40675262d325bdd9ee3781281b100816b0c15b65fe8745cfd
-
SHA512
7488763b5535b932b5a22ba9d8cb1f0a62b06d37e59005cbab0b6257adfe6de63394dc797695cd7be0e427c008702b26b418c877890b9f00ef4397b6a5c463fd
-
SSDEEP
24576:Ju0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:A0+BshUC1VzUjjPP0/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-