General
-
Target
79944b1379a7511c17c2d37484e729b740751c4d8071ec46d10e8c274eb0fd74
-
Size
224KB
-
Sample
240313-zkpv6agd4z
-
MD5
87a2a67ea195d5f7a628e79c113f3611
-
SHA1
9e34ca860fe91402e679587634d8fd35b6d16d5e
-
SHA256
79944b1379a7511c17c2d37484e729b740751c4d8071ec46d10e8c274eb0fd74
-
SHA512
fd88f78954a7d827df83ebd68a846feead0fa20972b555e71baef98e4bcd19fffec4179e679e306ca7327ec7a8fbdb98c056662c4d2ade4e5c966f119b39a89b
-
SSDEEP
3072:8b3N87hBQtfZV7l2mclfj4Uvx+9sNxu+2eRcKgsU61JkkX39RLrw4ySKUbax2+gm:ANXp74L76nrZ3X
Malware Config
Targets
-
-
Target
79944b1379a7511c17c2d37484e729b740751c4d8071ec46d10e8c274eb0fd74
-
Size
224KB
-
MD5
87a2a67ea195d5f7a628e79c113f3611
-
SHA1
9e34ca860fe91402e679587634d8fd35b6d16d5e
-
SHA256
79944b1379a7511c17c2d37484e729b740751c4d8071ec46d10e8c274eb0fd74
-
SHA512
fd88f78954a7d827df83ebd68a846feead0fa20972b555e71baef98e4bcd19fffec4179e679e306ca7327ec7a8fbdb98c056662c4d2ade4e5c966f119b39a89b
-
SSDEEP
3072:8b3N87hBQtfZV7l2mclfj4Uvx+9sNxu+2eRcKgsU61JkkX39RLrw4ySKUbax2+gm:ANXp74L76nrZ3X
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-