General
-
Target
7d660a1bf7103333e449e670f97ed735
-
Size
172KB
-
Sample
240128-thn8ysegdl
-
MD5
7d660a1bf7103333e449e670f97ed735
-
SHA1
627fc9fa1ac41cb85c7af148a70e8529c22e43e7
-
SHA256
53cfd7a02bafbc7e3af5ba83a5b779a9bbdff471d23ad0e61a494ea544ef98d5
-
SHA512
ac1225e7ba0cb0ca4fd22f814347d321c14c7fd4e3b1ecbaaf465e8c7173a1c50b5f6d23354b7cf8360fa21aadf0faff6816c2f902dd08c8e1be509f03fce3d7
-
SSDEEP
1536:4bxDqR77vst+SbtS0SIImNMlsCSZxIG+UkHol/JVCjqDO:0YnvzRflolxVA4
Malware Config
Targets
-
-
Target
7d660a1bf7103333e449e670f97ed735
-
Size
172KB
-
MD5
7d660a1bf7103333e449e670f97ed735
-
SHA1
627fc9fa1ac41cb85c7af148a70e8529c22e43e7
-
SHA256
53cfd7a02bafbc7e3af5ba83a5b779a9bbdff471d23ad0e61a494ea544ef98d5
-
SHA512
ac1225e7ba0cb0ca4fd22f814347d321c14c7fd4e3b1ecbaaf465e8c7173a1c50b5f6d23354b7cf8360fa21aadf0faff6816c2f902dd08c8e1be509f03fce3d7
-
SSDEEP
1536:4bxDqR77vst+SbtS0SIImNMlsCSZxIG+UkHol/JVCjqDO:0YnvzRflolxVA4
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-