General
-
Target
b4dc222bdf7f44c7ff0c5bb8570748ce
-
Size
206KB
-
Sample
240305-q8alpshc55
-
MD5
b4dc222bdf7f44c7ff0c5bb8570748ce
-
SHA1
68b3c0e90f312b261f7e680f63a8b700ce35915d
-
SHA256
c7c4e1a1357dc1823448c18dfa93dfb874fc86186b4c4dded17a710c20bf69ce
-
SHA512
75e17a1a68cd12c4c4f50aff26c05e45300070fff9479be7cbf5c457b2fa79bdaac63f5bc47c129b9f5f81faf4e9e51199c4c7abef7e87f293f9591192c2aead
-
SSDEEP
6144:Lw2wAbPrxVb5OcViTLaeZvkWaIUSKxrhMeJ:M23bDxVb5KbxkRSE9H
Behavioral task
behavioral1
Sample
b4dc222bdf7f44c7ff0c5bb8570748ce.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
b4dc222bdf7f44c7ff0c5bb8570748ce.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
b4dc222bdf7f44c7ff0c5bb8570748ce
-
Size
206KB
-
MD5
b4dc222bdf7f44c7ff0c5bb8570748ce
-
SHA1
68b3c0e90f312b261f7e680f63a8b700ce35915d
-
SHA256
c7c4e1a1357dc1823448c18dfa93dfb874fc86186b4c4dded17a710c20bf69ce
-
SHA512
75e17a1a68cd12c4c4f50aff26c05e45300070fff9479be7cbf5c457b2fa79bdaac63f5bc47c129b9f5f81faf4e9e51199c4c7abef7e87f293f9591192c2aead
-
SSDEEP
6144:Lw2wAbPrxVb5OcViTLaeZvkWaIUSKxrhMeJ:M23bDxVb5KbxkRSE9H
Score8/10-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-