General
-
Target
2e078d8d82e5c0d6f1d2ca6b4d91fa411d0d6dc0f8fc75ef8f26958565c367ee
-
Size
371KB
-
Sample
240310-yzfelabb65
-
MD5
e6ddb64e185a31382faccd939eb22aa7
-
SHA1
0a8074a55ebfb1709511ef912cca0818edcc1748
-
SHA256
2e078d8d82e5c0d6f1d2ca6b4d91fa411d0d6dc0f8fc75ef8f26958565c367ee
-
SHA512
7049e14746839e8d02a5da221226f57a86050572c6b297ce413daecb80b4841715784045eeb3d2e2863162fc7a82fa17c71083de7abdd0aa92a86c3ab9d0bd4b
-
SSDEEP
6144:xmfTClGiVDlhSsDCx5oD7n3Kpfh9VULNpIr7mi7enXtaeWq9jJWNbqDze:GOoi4xGDDO7qfIrCXdaTRNb4e
Static task
static1
Behavioral task
behavioral1
Sample
2e078d8d82e5c0d6f1d2ca6b4d91fa411d0d6dc0f8fc75ef8f26958565c367ee.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
218.54.31.226
218.54.31.165
Targets
-
-
Target
2e078d8d82e5c0d6f1d2ca6b4d91fa411d0d6dc0f8fc75ef8f26958565c367ee
-
Size
371KB
-
MD5
e6ddb64e185a31382faccd939eb22aa7
-
SHA1
0a8074a55ebfb1709511ef912cca0818edcc1748
-
SHA256
2e078d8d82e5c0d6f1d2ca6b4d91fa411d0d6dc0f8fc75ef8f26958565c367ee
-
SHA512
7049e14746839e8d02a5da221226f57a86050572c6b297ce413daecb80b4841715784045eeb3d2e2863162fc7a82fa17c71083de7abdd0aa92a86c3ab9d0bd4b
-
SSDEEP
6144:xmfTClGiVDlhSsDCx5oD7n3Kpfh9VULNpIr7mi7enXtaeWq9jJWNbqDze:GOoi4xGDDO7qfIrCXdaTRNb4e
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-