General
-
Target
660b07894dbb15e23d0fba1854641f4dd2335892bb0d23bdd9422938876271d2
-
Size
172KB
-
Sample
240311-18vxraga5z
-
MD5
d0d9ebf4b1539932a4a2469f9bf33b13
-
SHA1
e548f87f5fdefe80a3f9fe988d960fc18e8388e5
-
SHA256
660b07894dbb15e23d0fba1854641f4dd2335892bb0d23bdd9422938876271d2
-
SHA512
f464637fd1cc409ec64f373fa77ab0a84cc9d5ef33a99de602f2da9b03f20327e5b6d68d52b66af9522ccd2ecec0c5703d3ac3b5f1317d7700b48b553249f28f
-
SSDEEP
3072:+CqRckq+4xLKGPQb6pLnq1AbpaMAePjTY273c0Ii8onzK9:qjWxLKGPQbWqliA27MLsK
Malware Config
Targets
-
-
Target
660b07894dbb15e23d0fba1854641f4dd2335892bb0d23bdd9422938876271d2
-
Size
172KB
-
MD5
d0d9ebf4b1539932a4a2469f9bf33b13
-
SHA1
e548f87f5fdefe80a3f9fe988d960fc18e8388e5
-
SHA256
660b07894dbb15e23d0fba1854641f4dd2335892bb0d23bdd9422938876271d2
-
SHA512
f464637fd1cc409ec64f373fa77ab0a84cc9d5ef33a99de602f2da9b03f20327e5b6d68d52b66af9522ccd2ecec0c5703d3ac3b5f1317d7700b48b553249f28f
-
SSDEEP
3072:+CqRckq+4xLKGPQb6pLnq1AbpaMAePjTY273c0Ii8onzK9:qjWxLKGPQbWqliA27MLsK
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-