General
-
Target
604e201e8d0491c0f6009a3aea7987a1b1e964da53fd783d07f644f743d1207f
-
Size
232KB
-
Sample
240311-11c2zafg4s
-
MD5
d30ee41ecd21956758a3e7f7ab413cb2
-
SHA1
eba84e7f45a538fac3c9990be1e9f60f13890a3f
-
SHA256
604e201e8d0491c0f6009a3aea7987a1b1e964da53fd783d07f644f743d1207f
-
SHA512
98acd0c7e75632fcdca94a80d7374812384a5a379a8f6bcb481c7a78ab98d5f80b674cd06c26af776cb75987749d0b168be94f4942b28ca5a209853c7cef069d
-
SSDEEP
3072:mtAKE9t78lsarWYCs5fDF4LJSImbV8UvR77D9G5UEDVR/bwutUqQJ8qp:m0tmzbF4NN28UJ77hGGED/bbJE
Malware Config
Targets
-
-
Target
604e201e8d0491c0f6009a3aea7987a1b1e964da53fd783d07f644f743d1207f
-
Size
232KB
-
MD5
d30ee41ecd21956758a3e7f7ab413cb2
-
SHA1
eba84e7f45a538fac3c9990be1e9f60f13890a3f
-
SHA256
604e201e8d0491c0f6009a3aea7987a1b1e964da53fd783d07f644f743d1207f
-
SHA512
98acd0c7e75632fcdca94a80d7374812384a5a379a8f6bcb481c7a78ab98d5f80b674cd06c26af776cb75987749d0b168be94f4942b28ca5a209853c7cef069d
-
SSDEEP
3072:mtAKE9t78lsarWYCs5fDF4LJSImbV8UvR77D9G5UEDVR/bwutUqQJ8qp:m0tmzbF4NN28UJ77hGGED/bbJE
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-