General
-
Target
439b1149525df1fe6868160893f89d11ce43267a9e2f5b00d7d31a6fbeaf4e91
-
Size
327KB
-
Sample
240311-zttkpseb9t
-
MD5
fde854a1c33f412bde0cf6b4e7d9b1e3
-
SHA1
5090314a42fb5aa738e49d9a96b7d6dcc333b35c
-
SHA256
439b1149525df1fe6868160893f89d11ce43267a9e2f5b00d7d31a6fbeaf4e91
-
SHA512
1ebe4e479df20ec03197be3bf5931340f99295070b718aba301bc48d801a70b3461c89b72d73bf304905df51c7fe49273b1032b14338162636547b17301d9af9
-
SSDEEP
6144:sY4zSop9m06QbGTCnTRoOIH3FPA7AthtLpx:PkXpd6jqiOIHZAk
Static task
static1
Behavioral task
behavioral1
Sample
439b1149525df1fe6868160893f89d11ce43267a9e2f5b00d7d31a6fbeaf4e91.exe
Resource
win7-20240215-en
Malware Config
Extracted
urelas
218.54.31.165
218.54.31.226
Targets
-
-
Target
439b1149525df1fe6868160893f89d11ce43267a9e2f5b00d7d31a6fbeaf4e91
-
Size
327KB
-
MD5
fde854a1c33f412bde0cf6b4e7d9b1e3
-
SHA1
5090314a42fb5aa738e49d9a96b7d6dcc333b35c
-
SHA256
439b1149525df1fe6868160893f89d11ce43267a9e2f5b00d7d31a6fbeaf4e91
-
SHA512
1ebe4e479df20ec03197be3bf5931340f99295070b718aba301bc48d801a70b3461c89b72d73bf304905df51c7fe49273b1032b14338162636547b17301d9af9
-
SSDEEP
6144:sY4zSop9m06QbGTCnTRoOIH3FPA7AthtLpx:PkXpd6jqiOIHZAk
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-