General
-
Target
2852327f7d8332c4732755303650b0b5
-
Size
60KB
-
Sample
231231-e6wwdacecn
-
MD5
2852327f7d8332c4732755303650b0b5
-
SHA1
19a3bfa97759ea0006a97792877524b75d961e32
-
SHA256
c6137379d4dcde9948d4c607445758770125145577a780fdcc4dfc43b8fe85eb
-
SHA512
5f2a6f4e4745eabfc6adf2f787e114ee27a2fd1471ef2e166ec03db3f11cb74655e8ffeb9d0b28c394a5dedcbb1724843fe5f5c69b6352063149798f871979b4
-
SSDEEP
1536:pKJD7PHbbSNtS0SIH0NMhsjWZUkHo9q5H:EPXZWxo9q
Malware Config
Targets
-
-
Target
2852327f7d8332c4732755303650b0b5
-
Size
60KB
-
MD5
2852327f7d8332c4732755303650b0b5
-
SHA1
19a3bfa97759ea0006a97792877524b75d961e32
-
SHA256
c6137379d4dcde9948d4c607445758770125145577a780fdcc4dfc43b8fe85eb
-
SHA512
5f2a6f4e4745eabfc6adf2f787e114ee27a2fd1471ef2e166ec03db3f11cb74655e8ffeb9d0b28c394a5dedcbb1724843fe5f5c69b6352063149798f871979b4
-
SSDEEP
1536:pKJD7PHbbSNtS0SIH0NMhsjWZUkHo9q5H:EPXZWxo9q
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-