General
-
Target
3dbfb5aed328650b960d1ba6aa3c8e6f
-
Size
155KB
-
Sample
231225-1fmexafff8
-
MD5
3dbfb5aed328650b960d1ba6aa3c8e6f
-
SHA1
9b3344c6b399829370b286c46c991f2a163cf1ef
-
SHA256
d005e4914eab4fabdbe31078662a48b27fee09f6eabbe5d0edcbaa6604a3fbb7
-
SHA512
516af3255a23122f1d3c17b1624a21e282a0d66ae82b8ec30cd5a388d35b04d76ee95ef2653795d01e14e9f599ff77ffbaf0eb8ec61d5f13555353461c4cced8
-
SSDEEP
384:eOFiGwXaJ+EHqm4fLl3C8esEBqhn9NhqaxhqCKI3U/sLa/nCpZc6bG:eOFiGUw7qmWyqhEaxCD/nCt6
Malware Config
Targets
-
-
Target
3dbfb5aed328650b960d1ba6aa3c8e6f
-
Size
155KB
-
MD5
3dbfb5aed328650b960d1ba6aa3c8e6f
-
SHA1
9b3344c6b399829370b286c46c991f2a163cf1ef
-
SHA256
d005e4914eab4fabdbe31078662a48b27fee09f6eabbe5d0edcbaa6604a3fbb7
-
SHA512
516af3255a23122f1d3c17b1624a21e282a0d66ae82b8ec30cd5a388d35b04d76ee95ef2653795d01e14e9f599ff77ffbaf0eb8ec61d5f13555353461c4cced8
-
SSDEEP
384:eOFiGwXaJ+EHqm4fLl3C8esEBqhn9NhqaxhqCKI3U/sLa/nCpZc6bG:eOFiGUw7qmWyqhEaxCD/nCt6
Score10/10-
Modifies visibility of file extensions in Explorer
-
Disables RegEdit via registry modification
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-