General
-
Target
de1a84997ac252b0a4b0edf6c6725bcb6fb3a07723607316485555351f5e7f02
-
Size
148KB
-
Sample
240316-ayfrzafd9t
-
MD5
3b8ed41666e0e1a5e16da434ea8ffad0
-
SHA1
d5502095ba6dd1ee7b5c8a9267892f0d852d9fc7
-
SHA256
de1a84997ac252b0a4b0edf6c6725bcb6fb3a07723607316485555351f5e7f02
-
SHA512
fcb3b31946a84b6476e507449020d2e04d2be6a1acdac8e3c6a98ea0eefa3205269263912b4124e759f7976e6f920964b539f93cc7b8caa93c69e4cdb5c01b2e
-
SSDEEP
3072:pZD+WuMBspr8+k77/pshIR/x0+dv4TLxyK4c4oQZiEeB:PSWuMBsFvSx4+dv4TV9Wu
Malware Config
Targets
-
-
Target
de1a84997ac252b0a4b0edf6c6725bcb6fb3a07723607316485555351f5e7f02
-
Size
148KB
-
MD5
3b8ed41666e0e1a5e16da434ea8ffad0
-
SHA1
d5502095ba6dd1ee7b5c8a9267892f0d852d9fc7
-
SHA256
de1a84997ac252b0a4b0edf6c6725bcb6fb3a07723607316485555351f5e7f02
-
SHA512
fcb3b31946a84b6476e507449020d2e04d2be6a1acdac8e3c6a98ea0eefa3205269263912b4124e759f7976e6f920964b539f93cc7b8caa93c69e4cdb5c01b2e
-
SSDEEP
3072:pZD+WuMBspr8+k77/pshIR/x0+dv4TLxyK4c4oQZiEeB:PSWuMBsFvSx4+dv4TV9Wu
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-