General
-
Target
02963c67bf00a5d357dece29282f7dc6
-
Size
1.1MB
-
Sample
231224-sb5fxsdaf7
-
MD5
02963c67bf00a5d357dece29282f7dc6
-
SHA1
711dfc4ec7685fdd7ec03098a9ac14163d8494fd
-
SHA256
7d478b98b96d489f329ae874fae49c149fa3355aabe73d99246fa2381f3c6e87
-
SHA512
8d732a60bba68b5d0b51ea34de47d2d26b73cdec3de58aaa0335792d9dd1d300c0d74eed0fd26471b1b71b5779663f2ca0d53b70d4fc3d34791757a3fe6af910
-
SSDEEP
24576:88PWE9a4eBUtm5S0Mfy9blxH7b9Mf8hFF2zybURgu+tu7ui5YiJ+ftTe:8bE9axBU05S0MsOkFFFbU2unbNJ9
Malware Config
Targets
-
-
Target
02963c67bf00a5d357dece29282f7dc6
-
Size
1.1MB
-
MD5
02963c67bf00a5d357dece29282f7dc6
-
SHA1
711dfc4ec7685fdd7ec03098a9ac14163d8494fd
-
SHA256
7d478b98b96d489f329ae874fae49c149fa3355aabe73d99246fa2381f3c6e87
-
SHA512
8d732a60bba68b5d0b51ea34de47d2d26b73cdec3de58aaa0335792d9dd1d300c0d74eed0fd26471b1b71b5779663f2ca0d53b70d4fc3d34791757a3fe6af910
-
SSDEEP
24576:88PWE9a4eBUtm5S0Mfy9blxH7b9Mf8hFF2zybURgu+tu7ui5YiJ+ftTe:8bE9axBU05S0MsOkFFFbU2unbNJ9
Score10/10-
Modifies firewall policy service
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Drops file in System32 directory
-