General
-
Target
b42bc8be0a045e0a254ce8cf5a4c5f55
-
Size
84KB
-
Sample
240305-jkvteaag35
-
MD5
b42bc8be0a045e0a254ce8cf5a4c5f55
-
SHA1
58e88d802d9720e0f064f9f4a09477684a35c4d1
-
SHA256
f8dec3bc89c9f3442ad2fa7234124e7fa1de93235e4571e3b011bab14ae5db60
-
SHA512
0772e5b956e72f73000878ebf94df5877c4d8ec21352e02bb4c4c89d608c995da44aa2b26189efe0020485c2638c38d290f7b6200d6a81308fb40a8cd9f8c303
-
SSDEEP
1536:J6ggfUfojGnRR1J0+6Q230jgBhVulU8KgKFVXljQG6q8+t:J6uxJ0+yBz6jK9XtQ88+t
Malware Config
Targets
-
-
Target
b42bc8be0a045e0a254ce8cf5a4c5f55
-
Size
84KB
-
MD5
b42bc8be0a045e0a254ce8cf5a4c5f55
-
SHA1
58e88d802d9720e0f064f9f4a09477684a35c4d1
-
SHA256
f8dec3bc89c9f3442ad2fa7234124e7fa1de93235e4571e3b011bab14ae5db60
-
SHA512
0772e5b956e72f73000878ebf94df5877c4d8ec21352e02bb4c4c89d608c995da44aa2b26189efe0020485c2638c38d290f7b6200d6a81308fb40a8cd9f8c303
-
SSDEEP
1536:J6ggfUfojGnRR1J0+6Q230jgBhVulU8KgKFVXljQG6q8+t:J6uxJ0+yBz6jK9XtQ88+t
Score8/10-
Sets DLL path for service in the registry
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-