General
-
Target
114dbbe1e2721a3c8b2325a0f854661abe609850190ef27248ee90c32cb93c3a
-
Size
1.2MB
-
Sample
230423-3gp9asge57
-
MD5
4e98ff1fd6223185891f26c9d0a1e315
-
SHA1
38cc40e81c514b8877372358435fd72758a9996a
-
SHA256
114dbbe1e2721a3c8b2325a0f854661abe609850190ef27248ee90c32cb93c3a
-
SHA512
ec5ce4250d07f5ad3937d9de4e676f94a4d2d7fbed2b15b3ab99376f82d218f37b7f7de9a0e92cb50d827be4c698bb0dcc3bac6a8ce2eb26fec24bb6479f79a3
-
SSDEEP
24576:au0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:H0+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
114dbbe1e2721a3c8b2325a0f854661abe609850190ef27248ee90c32cb93c3a
-
Size
1.2MB
-
MD5
4e98ff1fd6223185891f26c9d0a1e315
-
SHA1
38cc40e81c514b8877372358435fd72758a9996a
-
SHA256
114dbbe1e2721a3c8b2325a0f854661abe609850190ef27248ee90c32cb93c3a
-
SHA512
ec5ce4250d07f5ad3937d9de4e676f94a4d2d7fbed2b15b3ab99376f82d218f37b7f7de9a0e92cb50d827be4c698bb0dcc3bac6a8ce2eb26fec24bb6479f79a3
-
SSDEEP
24576:au0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:H0+BshUC1VzUjjPP0/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-