General
-
Target
3830a6821f19f83ba8aa48cd58a755db783facd4954ea7eddb38d92730bfc01e
-
Size
60KB
-
Sample
240311-zbtgzsff55
-
MD5
e744e6f9533f49564360f5e06b96d87f
-
SHA1
a65903092ebd3b891ccb950edf46c2fe99f1b13b
-
SHA256
3830a6821f19f83ba8aa48cd58a755db783facd4954ea7eddb38d92730bfc01e
-
SHA512
4f18bbc41912f4e320fdec88eec505e8dde0b3444bdb8821b38cb82071d00c76cf031f7a2b8865d42e23bde5ddf10b1829ba9724e3a526f045e14c09f3c18b9b
-
SSDEEP
384:+5rDuuOFpEauMLfQDb2pproT/z4m5m1GJE6Al6z8yXDTLhr9B:MDcpEBMLfQcubV5wGE96YyXDTLdn
Malware Config
Targets
-
-
Target
3830a6821f19f83ba8aa48cd58a755db783facd4954ea7eddb38d92730bfc01e
-
Size
60KB
-
MD5
e744e6f9533f49564360f5e06b96d87f
-
SHA1
a65903092ebd3b891ccb950edf46c2fe99f1b13b
-
SHA256
3830a6821f19f83ba8aa48cd58a755db783facd4954ea7eddb38d92730bfc01e
-
SHA512
4f18bbc41912f4e320fdec88eec505e8dde0b3444bdb8821b38cb82071d00c76cf031f7a2b8865d42e23bde5ddf10b1829ba9724e3a526f045e14c09f3c18b9b
-
SSDEEP
384:+5rDuuOFpEauMLfQDb2pproT/z4m5m1GJE6Al6z8yXDTLhr9B:MDcpEBMLfQcubV5wGE96YyXDTLdn
Score9/10-
Detects Windows executables referencing non-Windows User-Agents
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-