General
-
Target
0ab7ccd86feeda120e46d691d31a50059e1bf1836987fc7078d5e51dc99dd8f2
-
Size
1.2MB
-
Sample
230423-z2sclshe5w
-
MD5
4748ab8fbe3a71941b770637ff2cfb3d
-
SHA1
ba36f654439644cc402aa0edd231da94416c04ce
-
SHA256
0ab7ccd86feeda120e46d691d31a50059e1bf1836987fc7078d5e51dc99dd8f2
-
SHA512
98697d7585b5b881ce064e991c88e607a84209fbd2f5b64bd01691b7ff12a8f6e27b5947415f3a3600073b54b2d21570c46f35641207adbfa5a218b3aaed60cd
-
SSDEEP
24576:/u0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:m0+BshUC1VzUjjPP0/
Static task
static1
Malware Config
Targets
-
-
Target
0ab7ccd86feeda120e46d691d31a50059e1bf1836987fc7078d5e51dc99dd8f2
-
Size
1.2MB
-
MD5
4748ab8fbe3a71941b770637ff2cfb3d
-
SHA1
ba36f654439644cc402aa0edd231da94416c04ce
-
SHA256
0ab7ccd86feeda120e46d691d31a50059e1bf1836987fc7078d5e51dc99dd8f2
-
SHA512
98697d7585b5b881ce064e991c88e607a84209fbd2f5b64bd01691b7ff12a8f6e27b5947415f3a3600073b54b2d21570c46f35641207adbfa5a218b3aaed60cd
-
SSDEEP
24576:/u0fRlKB2ZGPoUC1VqAUjfeEB7htX0yromAWB5HpS/gl:m0+BshUC1VzUjjPP0/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-