General
-
Target
Cyber Security Support.exe
-
Size
22.0MB
-
Sample
230614-sye5jsah4z
-
MD5
8452fe515826ab6f43eff16918a40e32
-
SHA1
64859677fd830793f787fa87c7b29f75883da5cd
-
SHA256
49d03705739faacb94c8025aaa432597d309fe96026c97ea4f0412bbf09f7a2e
-
SHA512
6429fa27c63290a777ab6836e7e97b552afdf396a505876fef068929af3da40be01eb505809e4e5bcbb8421ee401439e14a345854b6a17b8ffa8f43375728994
-
SSDEEP
393216:KOTMIRuiduUzRK3oMS6smRo6SxIM/L/JUH6eBkpH1ed/cViEZs1e4Vj5NnExjuwM:Fg1Oo4WsmRorIMbJUHmpVPiE29XnExjg
Static task
static1
Malware Config
Targets
-
-
Target
Cyber Security Support.exe
-
Size
22.0MB
-
MD5
8452fe515826ab6f43eff16918a40e32
-
SHA1
64859677fd830793f787fa87c7b29f75883da5cd
-
SHA256
49d03705739faacb94c8025aaa432597d309fe96026c97ea4f0412bbf09f7a2e
-
SHA512
6429fa27c63290a777ab6836e7e97b552afdf396a505876fef068929af3da40be01eb505809e4e5bcbb8421ee401439e14a345854b6a17b8ffa8f43375728994
-
SSDEEP
393216:KOTMIRuiduUzRK3oMS6smRo6SxIM/L/JUH6eBkpH1ed/cViEZs1e4Vj5NnExjuwM:Fg1Oo4WsmRorIMbJUHmpVPiE29XnExjg
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-