General
-
Target
ff4900d0f5639f8b94f2a3bd4abdf060
-
Size
152KB
-
Sample
231228-29kc3sdfc7
-
MD5
ff4900d0f5639f8b94f2a3bd4abdf060
-
SHA1
1cc833b741a6848699b311ecd229dcb6df211cf2
-
SHA256
95288d36ad27ac20db2858bea3e78a38de19b2dcfa4ca8c293bb98f3529676ee
-
SHA512
4129d82e37b5410291c15622a18141a31a15273ca723383b6ad337dc6c1ee98495b9facb72eb82aa467318f936f339654f42f87616b4dd225f84d6f24047057e
-
SSDEEP
3072:BhUFg1PTQtKrueiygR4O6avJamofZ4oQZiE36:2g17QtKSMgR56avUm2W0
Malware Config
Targets
-
-
Target
ff4900d0f5639f8b94f2a3bd4abdf060
-
Size
152KB
-
MD5
ff4900d0f5639f8b94f2a3bd4abdf060
-
SHA1
1cc833b741a6848699b311ecd229dcb6df211cf2
-
SHA256
95288d36ad27ac20db2858bea3e78a38de19b2dcfa4ca8c293bb98f3529676ee
-
SHA512
4129d82e37b5410291c15622a18141a31a15273ca723383b6ad337dc6c1ee98495b9facb72eb82aa467318f936f339654f42f87616b4dd225f84d6f24047057e
-
SSDEEP
3072:BhUFg1PTQtKrueiygR4O6avJamofZ4oQZiE36:2g17QtKSMgR56avUm2W0
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-