General
-
Target
2fe4e82fb8505a4cbc62ca4aabb61e95
-
Size
156KB
-
Sample
231225-vqjtwaeaa4
-
MD5
2fe4e82fb8505a4cbc62ca4aabb61e95
-
SHA1
9236f8956550b485b92946917d782f9e97c4a99c
-
SHA256
6ca38c1314069b980b5d2909c66da5aa85dda1dfb72bc3b673d218c8ab7ad8cd
-
SHA512
c1365a6b85f1956d728568c13ae4eee9acaa81d8e394608732438a6e77c7cfc0c8ef21a3e5128f820096fc269b9cc5ad7baa9464515c892175bb2c2beca07c34
-
SSDEEP
3072:4hoG1vvf963zW2FFWj8mXXvNrkUpBdasFhSFJmoq2vXqkyzGsNry9/9P9w9BVgI7:1G1vvf963zW2FFWImXXvNrkUpBdasFhH
Malware Config
Targets
-
-
Target
2fe4e82fb8505a4cbc62ca4aabb61e95
-
Size
156KB
-
MD5
2fe4e82fb8505a4cbc62ca4aabb61e95
-
SHA1
9236f8956550b485b92946917d782f9e97c4a99c
-
SHA256
6ca38c1314069b980b5d2909c66da5aa85dda1dfb72bc3b673d218c8ab7ad8cd
-
SHA512
c1365a6b85f1956d728568c13ae4eee9acaa81d8e394608732438a6e77c7cfc0c8ef21a3e5128f820096fc269b9cc5ad7baa9464515c892175bb2c2beca07c34
-
SSDEEP
3072:4hoG1vvf963zW2FFWj8mXXvNrkUpBdasFhSFJmoq2vXqkyzGsNry9/9P9w9BVgI7:1G1vvf963zW2FFWImXXvNrkUpBdasFhH
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-