General
-
Target
220a4745b509d7661309f6515c1af81d31b5b42060f057bd4441fda86b660ad7
-
Size
116KB
-
Sample
240317-w1mtyscd63
-
MD5
5eef993d756ce2ef0564c4359502cc11
-
SHA1
f16a90abde70ef5001b5f6c0a743498da75e648a
-
SHA256
220a4745b509d7661309f6515c1af81d31b5b42060f057bd4441fda86b660ad7
-
SHA512
537d4b8d9ac8da6f96a51ef4feb1d71c145481cc8556c231d132625423252b5a206e1aad3b916024bba40381e277752cfb4b524641eca47241a5141187c1bdf5
-
SSDEEP
1536:Q2IzJdvRNtIBc6oSCv1WMW/3Gk5cTersWjcdK6UFdfU0:QvHC9C9WZvnqeUK6U7fU0
Behavioral task
behavioral1
Sample
220a4745b509d7661309f6515c1af81d31b5b42060f057bd4441fda86b660ad7.exe
Resource
win7-20240221-en
Malware Config
Extracted
urelas
218.54.47.76
218.54.47.77
218.54.47.74
Targets
-
-
Target
220a4745b509d7661309f6515c1af81d31b5b42060f057bd4441fda86b660ad7
-
Size
116KB
-
MD5
5eef993d756ce2ef0564c4359502cc11
-
SHA1
f16a90abde70ef5001b5f6c0a743498da75e648a
-
SHA256
220a4745b509d7661309f6515c1af81d31b5b42060f057bd4441fda86b660ad7
-
SHA512
537d4b8d9ac8da6f96a51ef4feb1d71c145481cc8556c231d132625423252b5a206e1aad3b916024bba40381e277752cfb4b524641eca47241a5141187c1bdf5
-
SSDEEP
1536:Q2IzJdvRNtIBc6oSCv1WMW/3Gk5cTersWjcdK6UFdfU0:QvHC9C9WZvnqeUK6U7fU0
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-