General
-
Target
32c69bcf981ac2bf848d13922867baf9
-
Size
188KB
-
Sample
231225-wkpzdabbe6
-
MD5
32c69bcf981ac2bf848d13922867baf9
-
SHA1
cd027131bf998201fabc16182fbe235bd155b779
-
SHA256
6ada00d545ce2b0d18122c54482ace0c908e95f2406bf43b06dd3efc9f2b4c22
-
SHA512
2b9fbe1dce3999be8dda05874fb7bcbd2996e17e7388748fab615e58c016f30b20feb546ee7feb796587423bef972212ee2adcdaf0326d81cd111eba50786ace
-
SSDEEP
3072:K7fyj+d5ROnF+5pY0hrDGILpLI0M/Dk4KrfXRdjnbk9bOlezfQnFTTvprw1WPSTH:K76j+5CKs0tzXRdjbk9bbyvprwwgOs
Malware Config
Targets
-
-
Target
32c69bcf981ac2bf848d13922867baf9
-
Size
188KB
-
MD5
32c69bcf981ac2bf848d13922867baf9
-
SHA1
cd027131bf998201fabc16182fbe235bd155b779
-
SHA256
6ada00d545ce2b0d18122c54482ace0c908e95f2406bf43b06dd3efc9f2b4c22
-
SHA512
2b9fbe1dce3999be8dda05874fb7bcbd2996e17e7388748fab615e58c016f30b20feb546ee7feb796587423bef972212ee2adcdaf0326d81cd111eba50786ace
-
SSDEEP
3072:K7fyj+d5ROnF+5pY0hrDGILpLI0M/Dk4KrfXRdjnbk9bOlezfQnFTTvprw1WPSTH:K76j+5CKs0tzXRdjbk9bbyvprwwgOs
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-