General
-
Target
5c798ca9f4f453fb4241acc12c20b9eb16645b5c82b73abe9570b4227356cabb
-
Size
156KB
-
Sample
240312-zrd28sag21
-
MD5
e13265b7eb7d9851e67d4e403d3896c0
-
SHA1
fd02adbb021094935a7673875b0557b5e2ff5c26
-
SHA256
5c798ca9f4f453fb4241acc12c20b9eb16645b5c82b73abe9570b4227356cabb
-
SHA512
bb9231a52d72769f46671e0c3f62fd0d120d00710f2eb3b7c63bcf2ce7c9b5ea1acf99104f2b72d65e99d0d403d6d693afd7ecfc6d09e07de70af514b12b70ec
-
SSDEEP
1536:Y1pMooIDVfxmSTlsr9QUpHgsbRBGS17l5/rlAOXBOhwLAKtoJi+A7pfYoyv8+0Ee:Y7MLuvmJrOUJgsbT7OukKtdxyv8+CP
Malware Config
Targets
-
-
Target
5c798ca9f4f453fb4241acc12c20b9eb16645b5c82b73abe9570b4227356cabb
-
Size
156KB
-
MD5
e13265b7eb7d9851e67d4e403d3896c0
-
SHA1
fd02adbb021094935a7673875b0557b5e2ff5c26
-
SHA256
5c798ca9f4f453fb4241acc12c20b9eb16645b5c82b73abe9570b4227356cabb
-
SHA512
bb9231a52d72769f46671e0c3f62fd0d120d00710f2eb3b7c63bcf2ce7c9b5ea1acf99104f2b72d65e99d0d403d6d693afd7ecfc6d09e07de70af514b12b70ec
-
SSDEEP
1536:Y1pMooIDVfxmSTlsr9QUpHgsbRBGS17l5/rlAOXBOhwLAKtoJi+A7pfYoyv8+0Ee:Y7MLuvmJrOUJgsbT7OukKtdxyv8+CP
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-