General
-
Target
03dce86567555889b9e1c97903094f5e
-
Size
415KB
-
Sample
231229-ztb1nacgf8
-
MD5
03dce86567555889b9e1c97903094f5e
-
SHA1
068e834acb96db26586e6f410ff51105649f01ca
-
SHA256
97851be4fa27867b838b542eef2410179cac05cf1f833dbcc4ed1bfa5e1f152c
-
SHA512
2b355a231b86eaecc41e3ad626d12510f8687555e8543ffa0162d64f378f57a8e1afa6ff16bc1f559cd3d9f8e5ca96ec5271d2bc2b4a703d02b6d2b1d2e964eb
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCm/DELU31fIcjbpDCw1p3vmLvsZIaVwiwDcn:gDCwfG1bnxLEDsDCwfG1bnxLED8AlM0H
Malware Config
Targets
-
-
Target
03dce86567555889b9e1c97903094f5e
-
Size
415KB
-
MD5
03dce86567555889b9e1c97903094f5e
-
SHA1
068e834acb96db26586e6f410ff51105649f01ca
-
SHA256
97851be4fa27867b838b542eef2410179cac05cf1f833dbcc4ed1bfa5e1f152c
-
SHA512
2b355a231b86eaecc41e3ad626d12510f8687555e8543ffa0162d64f378f57a8e1afa6ff16bc1f559cd3d9f8e5ca96ec5271d2bc2b4a703d02b6d2b1d2e964eb
-
SSDEEP
3072:obpDCw1p3vmLvsZIaVwiwDcIbDHDCm/DELU31fIcjbpDCw1p3vmLvsZIaVwiwDcn:gDCwfG1bnxLEDsDCwfG1bnxLED8AlM0H
Score10/10-
Modifies visibility of file extensions in Explorer
-
Modifies visiblity of hidden/system files in Explorer
-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-