General
-
Target
13a0191046fdaef1c8c10f165de77173
-
Size
1.0MB
-
Sample
231230-klg5dacaeq
-
MD5
13a0191046fdaef1c8c10f165de77173
-
SHA1
320d1cead00e58e4497c706f09339bf203ee25e7
-
SHA256
fcf273f94cf146e08a8dbcbeb76e5c67f97603b67e0c00f8c989c532632c3d3a
-
SHA512
bbfdb64f9371d08348a4a1c4e004a244cabe37023ac684f799c8b94216cfd4b7aa29fa12a08fb7ae838ce0fb5043483c7210663f57a575cdee46cf671a003761
-
SSDEEP
24576:NSZKh8TmUI69QIzgKdylns+mbAX8EbmjLViNxbL6pH:NS0+TSmcK07NboLVcbuJ
Malware Config
Targets
-
-
Target
13a0191046fdaef1c8c10f165de77173
-
Size
1.0MB
-
MD5
13a0191046fdaef1c8c10f165de77173
-
SHA1
320d1cead00e58e4497c706f09339bf203ee25e7
-
SHA256
fcf273f94cf146e08a8dbcbeb76e5c67f97603b67e0c00f8c989c532632c3d3a
-
SHA512
bbfdb64f9371d08348a4a1c4e004a244cabe37023ac684f799c8b94216cfd4b7aa29fa12a08fb7ae838ce0fb5043483c7210663f57a575cdee46cf671a003761
-
SSDEEP
24576:NSZKh8TmUI69QIzgKdylns+mbAX8EbmjLViNxbL6pH:NS0+TSmcK07NboLVcbuJ
Score8/10-
Modifies Installed Components in the registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-