General
-
Target
3485de720983163afe70bd0052dc1d68.exe
-
Size
72KB
-
Sample
240102-s29hkabdh3
-
MD5
3485de720983163afe70bd0052dc1d68
-
SHA1
dad5a8c76fc9039faeef4158f4fc081081fb33a1
-
SHA256
d478d6dd237e22795b46ed1daa57b1968ec5d449e60e24cfed4e502549eca0b4
-
SHA512
a9e40aca9404789f7b673a33a20b1af8cd4763cbc42ed61f1fbd04b6d2f407219ef3524f63a77dbf17f952d6f0cdfd0c5df56648f9aa05666286335e945b87d9
-
SSDEEP
768:hmmuiuFhFtI0bgiY7qDpGjW7/U/jSXuHQilKPMPC4VqrMZWXArffTeffUW7EBmAQ:hcFmw3kqDUWb0jOYC4VqrMZWXAWAdN4
Malware Config
Targets
-
-
Target
3485de720983163afe70bd0052dc1d68.exe
-
Size
72KB
-
MD5
3485de720983163afe70bd0052dc1d68
-
SHA1
dad5a8c76fc9039faeef4158f4fc081081fb33a1
-
SHA256
d478d6dd237e22795b46ed1daa57b1968ec5d449e60e24cfed4e502549eca0b4
-
SHA512
a9e40aca9404789f7b673a33a20b1af8cd4763cbc42ed61f1fbd04b6d2f407219ef3524f63a77dbf17f952d6f0cdfd0c5df56648f9aa05666286335e945b87d9
-
SSDEEP
768:hmmuiuFhFtI0bgiY7qDpGjW7/U/jSXuHQilKPMPC4VqrMZWXArffTeffUW7EBmAQ:hcFmw3kqDUWb0jOYC4VqrMZWXAWAdN4
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-