General
-
Target
0x00080000000122f1-92.dat
-
Size
210KB
-
Sample
230609-etx8nsah73
-
MD5
bdff2c7929bbc165fa7c6033209a7d8d
-
SHA1
affe808f5f52ca3e71bfb1b51e0c52d430d6a2a8
-
SHA256
1edfbe9f55dc9d19c03fad367153c73eac6f6a5a3f63515864f35154abdbb56a
-
SHA512
645140c746c699140cd02001b6c70dd2a41916d18f143e7ab61ae9badeb2f3a30f5b6f47de3d84fdca44f859030654923fe68479a48b64776bcddec89820d1fa
-
SSDEEP
3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
Behavioral task
behavioral1
Sample
0x00080000000122f1-92.exe
Resource
win7-20230220-en
Malware Config
Extracted
amadey
3.83
77.91.68.30/music/rock/index.php
Targets
-
-
Target
0x00080000000122f1-92.dat
-
Size
210KB
-
MD5
bdff2c7929bbc165fa7c6033209a7d8d
-
SHA1
affe808f5f52ca3e71bfb1b51e0c52d430d6a2a8
-
SHA256
1edfbe9f55dc9d19c03fad367153c73eac6f6a5a3f63515864f35154abdbb56a
-
SHA512
645140c746c699140cd02001b6c70dd2a41916d18f143e7ab61ae9badeb2f3a30f5b6f47de3d84fdca44f859030654923fe68479a48b64776bcddec89820d1fa
-
SSDEEP
3072:H/DmgskHbfHN+Pst60p0zuNmnKG7peNMQbuZAIqbey3lfbi:fDmfAfHN+wiuInRexuZAIij
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-