General
-
Target
The windows experience.exe
-
Size
84.8MB
-
Sample
231112-vrj62ahc41
-
MD5
35d341980d591feb03b89e512c8303d5
-
SHA1
2da7b5e659141fdbe1d55d52773cfd05c769ff9c
-
SHA256
9151ed827c6ae03dcc12fe6b761f60667df12df191d732d9c97a1921da68a20a
-
SHA512
b51e87d4299782225ed06878aac536157e2e45de64e8031ecbbb235c3f0d0999e835c103cef5edc483cf964c0099db32bd7847affaceb9f3be7daeabd461cfd5
-
SSDEEP
1572864:EBuW1//4nyC6xdAkVfpn+VxR3yvQ8i10O/7ImGiMHpdUP9TLAxjV0Taj:o1XubcRVfpnexhyoX9I8MHDW9TLGj
Malware Config
Targets
-
-
Target
The windows experience.exe
-
Size
84.8MB
-
MD5
35d341980d591feb03b89e512c8303d5
-
SHA1
2da7b5e659141fdbe1d55d52773cfd05c769ff9c
-
SHA256
9151ed827c6ae03dcc12fe6b761f60667df12df191d732d9c97a1921da68a20a
-
SHA512
b51e87d4299782225ed06878aac536157e2e45de64e8031ecbbb235c3f0d0999e835c103cef5edc483cf964c0099db32bd7847affaceb9f3be7daeabd461cfd5
-
SSDEEP
1572864:EBuW1//4nyC6xdAkVfpn+VxR3yvQ8i10O/7ImGiMHpdUP9TLAxjV0Taj:o1XubcRVfpnexhyoX9I8MHDW9TLGj
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-