General
-
Target
eb59cadeadde5035c8153ded0a8f90ac88039fd848e8a2a3e9d568f46db3e712
-
Size
192KB
-
Sample
240311-zrskmaeb4t
-
MD5
05f51e94e7edd1ad131bdb43e4254820
-
SHA1
9a9799f7bcf624b960a6585e353e8b5c374a097d
-
SHA256
eb59cadeadde5035c8153ded0a8f90ac88039fd848e8a2a3e9d568f46db3e712
-
SHA512
0c2b6198ce57de3cff0131a5b8ae5a2101c4c909af1f7a1123a974faeaf2c4a96acfab86c14966b7809fbfe46cbaff373c04676dbdefa1fc9f56387e5e745769
-
SSDEEP
3072:MFKNn7MlttMFz8o+F334VSKkfoyHYb/zCHPEhg5JN8x+eDfcAuQPUS9rulCA:MFg7MltKa2kHHYb/zCHPEhg5JN8x+eDq
Malware Config
Targets
-
-
Target
eb59cadeadde5035c8153ded0a8f90ac88039fd848e8a2a3e9d568f46db3e712
-
Size
192KB
-
MD5
05f51e94e7edd1ad131bdb43e4254820
-
SHA1
9a9799f7bcf624b960a6585e353e8b5c374a097d
-
SHA256
eb59cadeadde5035c8153ded0a8f90ac88039fd848e8a2a3e9d568f46db3e712
-
SHA512
0c2b6198ce57de3cff0131a5b8ae5a2101c4c909af1f7a1123a974faeaf2c4a96acfab86c14966b7809fbfe46cbaff373c04676dbdefa1fc9f56387e5e745769
-
SSDEEP
3072:MFKNn7MlttMFz8o+F334VSKkfoyHYb/zCHPEhg5JN8x+eDfcAuQPUS9rulCA:MFg7MltKa2kHHYb/zCHPEhg5JN8x+eDq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Adds Run key to start application
-