General
-
Target
8b1c24d4c475af8fb471c4a346aee597
-
Size
17KB
-
Sample
240203-chv8tsgggj
-
MD5
8b1c24d4c475af8fb471c4a346aee597
-
SHA1
d5406037b59ad08006b9121156d1f382160f0199
-
SHA256
33c6685a30275a1d83a31c38c7fdc700cc3526d867aef7ed1231c52b4f650385
-
SHA512
0b7cd9c332c5bbe029dc9de4695cf95d75a85507f8ad2615103f7cd5670cbe890e4d77cf9cad1bc709bbd439aa6c436669de214bec245944b881429d540b5494
-
SSDEEP
384:sFI3aqMycmZO2Zp+Nye8pqrmub8TyztsDN:si9MyoKK8o8TyJc
Malware Config
Targets
-
-
Target
8b1c24d4c475af8fb471c4a346aee597
-
Size
17KB
-
MD5
8b1c24d4c475af8fb471c4a346aee597
-
SHA1
d5406037b59ad08006b9121156d1f382160f0199
-
SHA256
33c6685a30275a1d83a31c38c7fdc700cc3526d867aef7ed1231c52b4f650385
-
SHA512
0b7cd9c332c5bbe029dc9de4695cf95d75a85507f8ad2615103f7cd5670cbe890e4d77cf9cad1bc709bbd439aa6c436669de214bec245944b881429d540b5494
-
SSDEEP
384:sFI3aqMycmZO2Zp+Nye8pqrmub8TyztsDN:si9MyoKK8o8TyJc
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-