General
-
Target
170a029e0ad68cbe1b17328f7423fd8b
-
Size
204KB
-
Sample
231230-ng8nbaadf2
-
MD5
170a029e0ad68cbe1b17328f7423fd8b
-
SHA1
2d67b4e813c84336ab826e3483637ecda1451e82
-
SHA256
51e322ce265bad298c66acdb827690c4802945982bd1f770f5cacb79f950b2d3
-
SHA512
5ce1a5440d23a5ec00ff3e51046edf86586f52a5859d830f37b99589b3d1e9ab2b06b4bc10badefc80b2498f607aab663d7b34a48c83815762cf0bdfb9db3faa
-
SSDEEP
1536:Vi+Oo8Ho1vzxHwx4eFxNy3tQ9CW5EZWHakMwP9W6uXNh9h1AWa11GBPIdRONd+wx:EHo1h00tQ9nLHbB9WTk9+Jgqmlt5i
Malware Config
Targets
-
-
Target
170a029e0ad68cbe1b17328f7423fd8b
-
Size
204KB
-
MD5
170a029e0ad68cbe1b17328f7423fd8b
-
SHA1
2d67b4e813c84336ab826e3483637ecda1451e82
-
SHA256
51e322ce265bad298c66acdb827690c4802945982bd1f770f5cacb79f950b2d3
-
SHA512
5ce1a5440d23a5ec00ff3e51046edf86586f52a5859d830f37b99589b3d1e9ab2b06b4bc10badefc80b2498f607aab663d7b34a48c83815762cf0bdfb9db3faa
-
SSDEEP
1536:Vi+Oo8Ho1vzxHwx4eFxNy3tQ9CW5EZWHakMwP9W6uXNh9h1AWa11GBPIdRONd+wx:EHo1h00tQ9nLHbB9WTk9+Jgqmlt5i
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-