General
-
Target
75115bbb451f2e0ed53399e4911493fed620afd68951ef7b704a3157bd8bc513
-
Size
34KB
-
Sample
240328-1pxbgahe2v
-
MD5
baf533a7c1a72c30ad47443aaf2b45f8
-
SHA1
0a7d1c31090566d064a2288ea1cbebc46ca02b0a
-
SHA256
75115bbb451f2e0ed53399e4911493fed620afd68951ef7b704a3157bd8bc513
-
SHA512
03977b5a07f0ff7757df9aef41849bdbe60bcb56389c7223dd4c90699b1e2793b7ef02a5c1d07749cf544e4540438d68bcf6ae6a7ecdadb63d59db4a8a541b7f
-
SSDEEP
768:M3EVdV0YXY/nckNsWheCNSdd57Do5utsp1TOIIIwjkL:lVdm5/nprh3Ny57guSTOju
Malware Config
Targets
-
-
Target
75115bbb451f2e0ed53399e4911493fed620afd68951ef7b704a3157bd8bc513
-
Size
34KB
-
MD5
baf533a7c1a72c30ad47443aaf2b45f8
-
SHA1
0a7d1c31090566d064a2288ea1cbebc46ca02b0a
-
SHA256
75115bbb451f2e0ed53399e4911493fed620afd68951ef7b704a3157bd8bc513
-
SHA512
03977b5a07f0ff7757df9aef41849bdbe60bcb56389c7223dd4c90699b1e2793b7ef02a5c1d07749cf544e4540438d68bcf6ae6a7ecdadb63d59db4a8a541b7f
-
SSDEEP
768:M3EVdV0YXY/nckNsWheCNSdd57Do5utsp1TOIIIwjkL:lVdm5/nprh3Ny57guSTOju
Score9/10-
Detects Windows executables referencing non-Windows User-Agents
-
UPX dump on OEP (original entry point)
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-