General
-
Target
1c0bbf36b5604b716151253be5b0700b
-
Size
415KB
-
Sample
231230-zg4j5segbk
-
MD5
1c0bbf36b5604b716151253be5b0700b
-
SHA1
11036866b12b83b187587573ec06c9c8d8904551
-
SHA256
2abcc7c3c3bf1c569f6663f988c874b082bf21f70be4bab31feded14408cf7bd
-
SHA512
0e622bbb706e7f0302ee59ea304535647081e0ea07a5d9e69101609b48e4351f34e07d5e48b4ba026d0723914f5d55c18b0652e6b3110311619da23d16039927
-
SSDEEP
12288:+P6ys+NgzZhkDjhErWqAw9CsNS5qKgDYcuP:qBNUfkCZhCp5qKg2
Malware Config
Targets
-
-
Target
1c0bbf36b5604b716151253be5b0700b
-
Size
415KB
-
MD5
1c0bbf36b5604b716151253be5b0700b
-
SHA1
11036866b12b83b187587573ec06c9c8d8904551
-
SHA256
2abcc7c3c3bf1c569f6663f988c874b082bf21f70be4bab31feded14408cf7bd
-
SHA512
0e622bbb706e7f0302ee59ea304535647081e0ea07a5d9e69101609b48e4351f34e07d5e48b4ba026d0723914f5d55c18b0652e6b3110311619da23d16039927
-
SSDEEP
12288:+P6ys+NgzZhkDjhErWqAw9CsNS5qKgDYcuP:qBNUfkCZhCp5qKg2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Drops file in Drivers directory
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-