General
-
Target
5e7d71b16bf7d1ac2a006fcbb20f321f0f4701f39fbaa350d332897cdc5b471c
-
Size
486KB
-
Sample
240311-1xy52ahg23
-
MD5
a638eda10a00059c79022d196f5afc94
-
SHA1
dcb8accd71e12d46595d07f16365d8122fc399ae
-
SHA256
5e7d71b16bf7d1ac2a006fcbb20f321f0f4701f39fbaa350d332897cdc5b471c
-
SHA512
6bcdba34640be86dd0a6fd4dd5077166ed8f84eddb0cbf15e2949eb4dfbef02ac259d283f74b67821b9f1528e27bdca5df3cca713e068217d6c5b5908b7aa264
-
SSDEEP
12288:cpbfVlu0agWfZlnxgmEpZGsrUs99uDEq5EGDFhe:cpbGRZxSfGCUs99hq5JW
Behavioral task
behavioral1
Sample
5e7d71b16bf7d1ac2a006fcbb20f321f0f4701f39fbaa350d332897cdc5b471c.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
1.234.83.146
133.242.129.155
218.54.31.226
218.54.31.165
Targets
-
-
Target
5e7d71b16bf7d1ac2a006fcbb20f321f0f4701f39fbaa350d332897cdc5b471c
-
Size
486KB
-
MD5
a638eda10a00059c79022d196f5afc94
-
SHA1
dcb8accd71e12d46595d07f16365d8122fc399ae
-
SHA256
5e7d71b16bf7d1ac2a006fcbb20f321f0f4701f39fbaa350d332897cdc5b471c
-
SHA512
6bcdba34640be86dd0a6fd4dd5077166ed8f84eddb0cbf15e2949eb4dfbef02ac259d283f74b67821b9f1528e27bdca5df3cca713e068217d6c5b5908b7aa264
-
SSDEEP
12288:cpbfVlu0agWfZlnxgmEpZGsrUs99uDEq5EGDFhe:cpbGRZxSfGCUs99hq5JW
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-