General
-
Target
c2b0c71308f53c60a19f59ecc94b492b
-
Size
19KB
-
Sample
240312-hbev6aaf51
-
MD5
c2b0c71308f53c60a19f59ecc94b492b
-
SHA1
11c471879219375485c00c1298664c191c7ce8d1
-
SHA256
c18d38ad1f347c22b80d07260c986fcd3fcd829d087a2f0301e9607e3cb43dd1
-
SHA512
73304caf08a3712bced8cc64a82d975b1b4f5b3e1702a0b9f50837f2de8eb4232044a134f7c40114afa1ffecc5ceee1d5bf7f19177285031c7e06658196498fb
-
SSDEEP
384:mFyTlPm+UkH9pVbqTDW9A9j2W7q2XTsUjybWvW9QB1tuqP:mFEhdrYbT7q2XT4xa1h
Malware Config
Targets
-
-
Target
c2b0c71308f53c60a19f59ecc94b492b
-
Size
19KB
-
MD5
c2b0c71308f53c60a19f59ecc94b492b
-
SHA1
11c471879219375485c00c1298664c191c7ce8d1
-
SHA256
c18d38ad1f347c22b80d07260c986fcd3fcd829d087a2f0301e9607e3cb43dd1
-
SHA512
73304caf08a3712bced8cc64a82d975b1b4f5b3e1702a0b9f50837f2de8eb4232044a134f7c40114afa1ffecc5ceee1d5bf7f19177285031c7e06658196498fb
-
SSDEEP
384:mFyTlPm+UkH9pVbqTDW9A9j2W7q2XTsUjybWvW9QB1tuqP:mFEhdrYbT7q2XT4xa1h
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-