General
-
Target
4320966d6210a0f1862e7899074883f4
-
Size
444KB
-
Sample
240105-jgqehsgeh2
-
MD5
4320966d6210a0f1862e7899074883f4
-
SHA1
768191b41c1c0556b3df6fa12e3cedb16002702e
-
SHA256
52f10fc5b995b9c7a36b8cf54e6ba0612fd9e1315792014764d97184c0488a1d
-
SHA512
894528a37741ba6a426af1aa1fedd6e289b81c33a1a64521c2fb1ebd6c5181dafe4b3f8fb663da55a89b1e63f1a5f0bcc9e17cbb06488fb34726cfe14da032ff
-
SSDEEP
12288:wutrzh9xOXk7GOHOJxl/0z+uoqzBTQGteH:wutr5OUSfD/0zpJK
Malware Config
Targets
-
-
Target
4320966d6210a0f1862e7899074883f4
-
Size
444KB
-
MD5
4320966d6210a0f1862e7899074883f4
-
SHA1
768191b41c1c0556b3df6fa12e3cedb16002702e
-
SHA256
52f10fc5b995b9c7a36b8cf54e6ba0612fd9e1315792014764d97184c0488a1d
-
SHA512
894528a37741ba6a426af1aa1fedd6e289b81c33a1a64521c2fb1ebd6c5181dafe4b3f8fb663da55a89b1e63f1a5f0bcc9e17cbb06488fb34726cfe14da032ff
-
SSDEEP
12288:wutrzh9xOXk7GOHOJxl/0z+uoqzBTQGteH:wutr5OUSfD/0zpJK
Score8/10-
Creates new service(s)
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-