General
-
Target
c530b58a525511f93edb70ef06042f98
-
Size
17KB
-
Sample
240313-g5kg3aeg7s
-
MD5
c530b58a525511f93edb70ef06042f98
-
SHA1
db8dffcf2b9ba373a88275a6906f013ed6b38233
-
SHA256
a8677448b9726615bd57f7736b669aa51acfba9c3a4f5921319ba33f9dcc710a
-
SHA512
7dc1b64c3be4ab290509d674f0e851625c8f1e98fe2618a5b3543e1b5e8311d04bb04af831748472bd2d72baf45aad3ae9d6a76965e9872aded75d9033a91f06
-
SSDEEP
384:MFR0G7XncmZO2Zp+Nye8pqrmub8TyztsDN:M/vXnoKK8o8TyJc
Malware Config
Targets
-
-
Target
c530b58a525511f93edb70ef06042f98
-
Size
17KB
-
MD5
c530b58a525511f93edb70ef06042f98
-
SHA1
db8dffcf2b9ba373a88275a6906f013ed6b38233
-
SHA256
a8677448b9726615bd57f7736b669aa51acfba9c3a4f5921319ba33f9dcc710a
-
SHA512
7dc1b64c3be4ab290509d674f0e851625c8f1e98fe2618a5b3543e1b5e8311d04bb04af831748472bd2d72baf45aad3ae9d6a76965e9872aded75d9033a91f06
-
SSDEEP
384:MFR0G7XncmZO2Zp+Nye8pqrmub8TyztsDN:M/vXnoKK8o8TyJc
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-