General
-
Target
1615c973bf40986ed4842489f4c9c3f2
-
Size
300KB
-
Sample
231225-l57ptaccbj
-
MD5
1615c973bf40986ed4842489f4c9c3f2
-
SHA1
5b320b57fe4f42c30cc2d00d1b8460371abb0c60
-
SHA256
6cd986e4248ff3f184b0c787f6534fb58250ab73f1fd9aa15bae95d626b735a7
-
SHA512
e8b2ae1f7c44d375c5684a58b705ae990b248fd241b31e6e6705b8078e5e5758878d7ec728bd8ca6a1d2ddb461371bb8e90b6ed0fdaf6fa3f8e18aea3184cfa5
-
SSDEEP
6144:ke9aKpFY/kJqeNhi0GTvHMww3y/IAFMsq:f8cEeNIAAFMsq
Malware Config
Targets
-
-
Target
1615c973bf40986ed4842489f4c9c3f2
-
Size
300KB
-
MD5
1615c973bf40986ed4842489f4c9c3f2
-
SHA1
5b320b57fe4f42c30cc2d00d1b8460371abb0c60
-
SHA256
6cd986e4248ff3f184b0c787f6534fb58250ab73f1fd9aa15bae95d626b735a7
-
SHA512
e8b2ae1f7c44d375c5684a58b705ae990b248fd241b31e6e6705b8078e5e5758878d7ec728bd8ca6a1d2ddb461371bb8e90b6ed0fdaf6fa3f8e18aea3184cfa5
-
SSDEEP
6144:ke9aKpFY/kJqeNhi0GTvHMww3y/IAFMsq:f8cEeNIAAFMsq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-