General
-
Target
0fd8f5a44ee62a9616f5851eea2d3a2f
-
Size
240KB
-
Sample
231225-jlmjesfeb9
-
MD5
0fd8f5a44ee62a9616f5851eea2d3a2f
-
SHA1
b338b4ce025704e3efe4684c0264d672fd64b252
-
SHA256
3676825e4fe3d14869bbee01c8072e5c240fbea7a38f8468ce742a1b78ecdd10
-
SHA512
4a9e8c1ca955e9b9269ec89625ef48e9e9f9ebbd26929590d6dba2125dd9cd2d1b3c434512bd114ef436abb6587cb2b448ce4979d373fa79269275f27a831c84
-
SSDEEP
3072:7kNrT8j6VlpvBd90i/SmWKLi7CjFSivnfu3fbMdozt5czH36:7E0UGKGkFRKfeoztOu
Malware Config
Targets
-
-
Target
0fd8f5a44ee62a9616f5851eea2d3a2f
-
Size
240KB
-
MD5
0fd8f5a44ee62a9616f5851eea2d3a2f
-
SHA1
b338b4ce025704e3efe4684c0264d672fd64b252
-
SHA256
3676825e4fe3d14869bbee01c8072e5c240fbea7a38f8468ce742a1b78ecdd10
-
SHA512
4a9e8c1ca955e9b9269ec89625ef48e9e9f9ebbd26929590d6dba2125dd9cd2d1b3c434512bd114ef436abb6587cb2b448ce4979d373fa79269275f27a831c84
-
SSDEEP
3072:7kNrT8j6VlpvBd90i/SmWKLi7CjFSivnfu3fbMdozt5czH36:7E0UGKGkFRKfeoztOu
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-