General
-
Target
d775d9d9787c54c69ad8c5bc5e92bb9f
-
Size
360KB
-
Sample
240320-as5txabh66
-
MD5
d775d9d9787c54c69ad8c5bc5e92bb9f
-
SHA1
3d12b33823c4f04e0c8e026aa84f515dda2b4fa5
-
SHA256
87f0ec39e8763c24f51a6e1c25921880d9b23d093b3b0a43847705be9a1153b7
-
SHA512
b882f576cfb3e2de36292f39731af3affa11a4cd8697e24c8674e5e85281d9d44995d6f0f272d7baeb1b06a9c0e4eef78b576958a159ea59493ec12440242433
-
SSDEEP
6144:UWAIJkblGbfGNlejHWqakfKneW3kiQ/a3kwwbcmRKBD9ZCj4Md:xAIJkblGbOOjtakSneWD1wLkrCcM
Static task
static1
Behavioral task
behavioral1
Sample
d775d9d9787c54c69ad8c5bc5e92bb9f.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
d775d9d9787c54c69ad8c5bc5e92bb9f.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
d775d9d9787c54c69ad8c5bc5e92bb9f
-
Size
360KB
-
MD5
d775d9d9787c54c69ad8c5bc5e92bb9f
-
SHA1
3d12b33823c4f04e0c8e026aa84f515dda2b4fa5
-
SHA256
87f0ec39e8763c24f51a6e1c25921880d9b23d093b3b0a43847705be9a1153b7
-
SHA512
b882f576cfb3e2de36292f39731af3affa11a4cd8697e24c8674e5e85281d9d44995d6f0f272d7baeb1b06a9c0e4eef78b576958a159ea59493ec12440242433
-
SSDEEP
6144:UWAIJkblGbfGNlejHWqakfKneW3kiQ/a3kwwbcmRKBD9ZCj4Md:xAIJkblGbOOjtakSneWD1wLkrCcM
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-