General
-
Target
ade19570306943872ea062a20b8ce50d39c3b55ae80e5dda509040d3b0d1200b
-
Size
1.2MB
-
Sample
230423-3ebywsaa8t
-
MD5
d55319a1ed0ae81dd4284eb65f06e573
-
SHA1
006d2ecf14cbca13b0c59a3ee64ebb53df76ea74
-
SHA256
ade19570306943872ea062a20b8ce50d39c3b55ae80e5dda509040d3b0d1200b
-
SHA512
d2157c0aa73a525337a1ddfc86954cb4aa5172c8b975ac9433fe8905a5fff7748e4164d9b4a00c0cc02fb2eeed16a672562dd2e004d27949cf8ae8f54c8319bb
-
SSDEEP
24576:hu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:Y0+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
ade19570306943872ea062a20b8ce50d39c3b55ae80e5dda509040d3b0d1200b
-
Size
1.2MB
-
MD5
d55319a1ed0ae81dd4284eb65f06e573
-
SHA1
006d2ecf14cbca13b0c59a3ee64ebb53df76ea74
-
SHA256
ade19570306943872ea062a20b8ce50d39c3b55ae80e5dda509040d3b0d1200b
-
SHA512
d2157c0aa73a525337a1ddfc86954cb4aa5172c8b975ac9433fe8905a5fff7748e4164d9b4a00c0cc02fb2eeed16a672562dd2e004d27949cf8ae8f54c8319bb
-
SSDEEP
24576:hu0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:Y0+BshUC1VzUjjPP0/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-