General
-
Target
4fc26d607646a8c93683ac75223ed0c53739de2b1c5f2f147204ebe55f1a110d
-
Size
70KB
-
Sample
240315-yh1n7sbe73
-
MD5
1321c86f9fa22d0cd52dbdfec21e2218
-
SHA1
9b4dc313182d643fec8770afec1631c019e89c25
-
SHA256
4fc26d607646a8c93683ac75223ed0c53739de2b1c5f2f147204ebe55f1a110d
-
SHA512
9051ff687b199324e5494780540653a0eaca6d0fdce726d8f32a8a50be9d1005347721586b7c1d08c4a97673540cce771802bd45d03bc414f87a9da3778f39be
-
SSDEEP
768:TrItKyw5WHXfQmjIiIk9ecAa0Mb96SyX1DLdRXXXE0009gx:Tr3Z5IfQmv81ar1yXtZAx
Malware Config
Targets
-
-
Target
4fc26d607646a8c93683ac75223ed0c53739de2b1c5f2f147204ebe55f1a110d
-
Size
70KB
-
MD5
1321c86f9fa22d0cd52dbdfec21e2218
-
SHA1
9b4dc313182d643fec8770afec1631c019e89c25
-
SHA256
4fc26d607646a8c93683ac75223ed0c53739de2b1c5f2f147204ebe55f1a110d
-
SHA512
9051ff687b199324e5494780540653a0eaca6d0fdce726d8f32a8a50be9d1005347721586b7c1d08c4a97673540cce771802bd45d03bc414f87a9da3778f39be
-
SSDEEP
768:TrItKyw5WHXfQmjIiIk9ecAa0Mb96SyX1DLdRXXXE0009gx:Tr3Z5IfQmv81ar1yXtZAx
Score9/10-
Detects Windows executables referencing non-Windows User-Agents
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-