General
-
Target
2d0021c02a0ab0e9da66f204fd1c58c407bab0787ca12f4bc24d662782e2a563
-
Size
148KB
-
Sample
240306-w8mtxsgb71
-
MD5
51a388a6d90e62007c2c214e8851266c
-
SHA1
baf81344bc8f0d78c5eeb8a74b3d2f26ddda6d2c
-
SHA256
2d0021c02a0ab0e9da66f204fd1c58c407bab0787ca12f4bc24d662782e2a563
-
SHA512
baa4fc8f16d62af596e409fe34af14d12805ceac0aebbc3a30d557b0e75fa7d7ef6f7d4db538cee573f788b14ef33fb380322873ef9418ef49937cc3bae1bfb9
-
SSDEEP
3072:SiD+WuMBspr8+k77/pswWR/x0+dv4TLxyK4c4oQZiEigaGS:hSWuMBsFvS04+dv4TV9Wogar
Malware Config
Targets
-
-
Target
2d0021c02a0ab0e9da66f204fd1c58c407bab0787ca12f4bc24d662782e2a563
-
Size
148KB
-
MD5
51a388a6d90e62007c2c214e8851266c
-
SHA1
baf81344bc8f0d78c5eeb8a74b3d2f26ddda6d2c
-
SHA256
2d0021c02a0ab0e9da66f204fd1c58c407bab0787ca12f4bc24d662782e2a563
-
SHA512
baa4fc8f16d62af596e409fe34af14d12805ceac0aebbc3a30d557b0e75fa7d7ef6f7d4db538cee573f788b14ef33fb380322873ef9418ef49937cc3bae1bfb9
-
SSDEEP
3072:SiD+WuMBspr8+k77/pswWR/x0+dv4TLxyK4c4oQZiEigaGS:hSWuMBsFvS04+dv4TV9Wogar
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-