General
-
Target
0f8ff0c50a8316b053a099a4aea66582
-
Size
695KB
-
Sample
231230-frz5xsdfg3
-
MD5
0f8ff0c50a8316b053a099a4aea66582
-
SHA1
b66b9d53b51a2703eac57359477cc7f92fc31358
-
SHA256
f40fc2fb686fcafd873a71d37d5c834b194a4897a01650599ca4947a07ba550a
-
SHA512
6ea2835cb898c6a9aaae33fa15a12b6493b39a4695ad4ec8a6f4109a334c23526485991337db0c0e04391ae2f058b4a80a6a81f8033a7db97c0c8e77728c29da
-
SSDEEP
12288:x9OyrUgK9OWyN2fb6x71SHhRtOHW6zA7/I5ui0Kxa7CAcREDZVfLbZQyWAn:GyrUgK9OT2fb6x71SH9sA7/+MKicRyZ9
Malware Config
Targets
-
-
Target
0f8ff0c50a8316b053a099a4aea66582
-
Size
695KB
-
MD5
0f8ff0c50a8316b053a099a4aea66582
-
SHA1
b66b9d53b51a2703eac57359477cc7f92fc31358
-
SHA256
f40fc2fb686fcafd873a71d37d5c834b194a4897a01650599ca4947a07ba550a
-
SHA512
6ea2835cb898c6a9aaae33fa15a12b6493b39a4695ad4ec8a6f4109a334c23526485991337db0c0e04391ae2f058b4a80a6a81f8033a7db97c0c8e77728c29da
-
SSDEEP
12288:x9OyrUgK9OWyN2fb6x71SHhRtOHW6zA7/I5ui0Kxa7CAcREDZVfLbZQyWAn:GyrUgK9OT2fb6x71SH9sA7/+MKicRyZ9
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-