General
-
Target
0346a4964100db9cdf42e72f3b96e989
-
Size
304KB
-
Sample
231224-smf8gaefe4
-
MD5
0346a4964100db9cdf42e72f3b96e989
-
SHA1
f5194770c42816d875243301b1b3b1dced2ca82e
-
SHA256
7864f40a0000ff521a8db67ead1fde8406a67d24004069820990c4bb21ecac80
-
SHA512
314099cde59373d24c300bd85f0fef8ffe57d29cf323ccfb3c5c71c996da3f10e3e6481b280ed78c8f1a521beb818178060b226c740a75ea5c4b3bb4e33f6516
-
SSDEEP
1536:cbKnwQnXcVYvYdYOYGYCVVB+fuIgb6Upud8/QkL0jNiQDSWDhv3/Q4VDUtd7fIsf:eKnPXc5A5SWDhv3/Q4VDUtd7fIs/jO2
Malware Config
Targets
-
-
Target
0346a4964100db9cdf42e72f3b96e989
-
Size
304KB
-
MD5
0346a4964100db9cdf42e72f3b96e989
-
SHA1
f5194770c42816d875243301b1b3b1dced2ca82e
-
SHA256
7864f40a0000ff521a8db67ead1fde8406a67d24004069820990c4bb21ecac80
-
SHA512
314099cde59373d24c300bd85f0fef8ffe57d29cf323ccfb3c5c71c996da3f10e3e6481b280ed78c8f1a521beb818178060b226c740a75ea5c4b3bb4e33f6516
-
SSDEEP
1536:cbKnwQnXcVYvYdYOYGYCVVB+fuIgb6Upud8/QkL0jNiQDSWDhv3/Q4VDUtd7fIsf:eKnPXc5A5SWDhv3/Q4VDUtd7fIs/jO2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-