General
-
Target
c57a389d6364580b2075cd47b5286d00
-
Size
17KB
-
Sample
240313-kxkpmsbb85
-
MD5
c57a389d6364580b2075cd47b5286d00
-
SHA1
7363a5e5e50ed6e9fafbe85978798531812301ce
-
SHA256
b67155e59dba0fe0c25135b405c89e96643d7e0dc790a28c8de32ba31556eaa2
-
SHA512
406b40f4ed64ef62c6ea02eb56fbea5f9bfabc2e0cf249f27f64503f1fc977dfcce92c0ad5420aabfb2bc710b83a9bab3561d835fd8085b88a7a346735062bc5
-
SSDEEP
384:sFvTswMIcmZO2Zp+Nye8pqrmub8TyztsDN:spJMIoKK8o8TyJc
Malware Config
Targets
-
-
Target
c57a389d6364580b2075cd47b5286d00
-
Size
17KB
-
MD5
c57a389d6364580b2075cd47b5286d00
-
SHA1
7363a5e5e50ed6e9fafbe85978798531812301ce
-
SHA256
b67155e59dba0fe0c25135b405c89e96643d7e0dc790a28c8de32ba31556eaa2
-
SHA512
406b40f4ed64ef62c6ea02eb56fbea5f9bfabc2e0cf249f27f64503f1fc977dfcce92c0ad5420aabfb2bc710b83a9bab3561d835fd8085b88a7a346735062bc5
-
SSDEEP
384:sFvTswMIcmZO2Zp+Nye8pqrmub8TyztsDN:spJMIoKK8o8TyJc
Score8/10-
Sets file execution options in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-