General
-
Target
d2d534db5b2c5cf216abf64798be8ea48c5acadd4fd0e616a2bff10b192d3508
-
Size
216KB
-
Sample
240311-bb59saga95
-
MD5
211f34c849ce718c0467c707ea02c427
-
SHA1
005194ec0e13f17119cca3d886a9d1fb8c1deaf1
-
SHA256
d2d534db5b2c5cf216abf64798be8ea48c5acadd4fd0e616a2bff10b192d3508
-
SHA512
ad765dba0008a3f5044d94bc778a53912bcae3dcb0165083d4d47bbae54e81377d229cd133da4db5383f65defcc1f4f21d04edf995c20f53374a532e8740f37a
-
SSDEEP
6144:XkVFUIECtrkQ5zgMZUP15HcAgonAmKfwDVAQ:UVN1gMZUHcAgonAmZDV
Malware Config
Targets
-
-
Target
d2d534db5b2c5cf216abf64798be8ea48c5acadd4fd0e616a2bff10b192d3508
-
Size
216KB
-
MD5
211f34c849ce718c0467c707ea02c427
-
SHA1
005194ec0e13f17119cca3d886a9d1fb8c1deaf1
-
SHA256
d2d534db5b2c5cf216abf64798be8ea48c5acadd4fd0e616a2bff10b192d3508
-
SHA512
ad765dba0008a3f5044d94bc778a53912bcae3dcb0165083d4d47bbae54e81377d229cd133da4db5383f65defcc1f4f21d04edf995c20f53374a532e8740f37a
-
SSDEEP
6144:XkVFUIECtrkQ5zgMZUP15HcAgonAmKfwDVAQ:UVN1gMZUHcAgonAmZDV
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-