General
-
Target
58a041e9a2c8795461a9f79b0a98ee1d99d28647b5097c21e6469f386c7d9332
-
Size
336KB
-
Sample
240310-z6z81scd31
-
MD5
4c5e88b39eebdb9a13d76e207cb09984
-
SHA1
3ef0919ba0670b865595949a96cf156978d59cdc
-
SHA256
58a041e9a2c8795461a9f79b0a98ee1d99d28647b5097c21e6469f386c7d9332
-
SHA512
9a1d76673e954aae0552cf00459fbbca5e4d72cb74c3a0c62eb860bccc5bcb3c4d3589bdc6437a4b3b7fe08479c71aef9bccd66bf9a94a0b3ae30cfddc7c48f5
-
SSDEEP
6144:yty5fbpxDuMcHYwt1gxloqtaE5iWbUMqfn8EijRUNafrHBw/gqrN:ytCLD7+51gxeq3gOU9EEQrhMgqZ
Static task
static1
Behavioral task
behavioral1
Sample
58a041e9a2c8795461a9f79b0a98ee1d99d28647b5097c21e6469f386c7d9332.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
218.54.31.165
218.54.31.226
Targets
-
-
Target
58a041e9a2c8795461a9f79b0a98ee1d99d28647b5097c21e6469f386c7d9332
-
Size
336KB
-
MD5
4c5e88b39eebdb9a13d76e207cb09984
-
SHA1
3ef0919ba0670b865595949a96cf156978d59cdc
-
SHA256
58a041e9a2c8795461a9f79b0a98ee1d99d28647b5097c21e6469f386c7d9332
-
SHA512
9a1d76673e954aae0552cf00459fbbca5e4d72cb74c3a0c62eb860bccc5bcb3c4d3589bdc6437a4b3b7fe08479c71aef9bccd66bf9a94a0b3ae30cfddc7c48f5
-
SSDEEP
6144:yty5fbpxDuMcHYwt1gxloqtaE5iWbUMqfn8EijRUNafrHBw/gqrN:ytCLD7+51gxeq3gOU9EEQrhMgqZ
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-