General
-
Target
0167dfa1505eb3861e0616f6d082bec3ed8a537c1e5cfd383c194ca5315268fa
-
Size
204KB
-
Sample
240328-vnjfbscb97
-
MD5
6de2af972d67d50ac73cd25f23f5e993
-
SHA1
22ed403f9afa1fea3c5052b57cc2923a97fb2724
-
SHA256
0167dfa1505eb3861e0616f6d082bec3ed8a537c1e5cfd383c194ca5315268fa
-
SHA512
96edcbd7b2f2b3d66332e8dd9ad9af1e202e8481f45fb16a8a646186ff09da3f8e2ba74de07df9df4c16e0db910431b8bd38f13646c3f89742015553e7118be4
-
SSDEEP
3072:6mIW88b0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWVk8:1dz4QxL7B9W0c1RCzR/fSmlu/
Malware Config
Targets
-
-
Target
0167dfa1505eb3861e0616f6d082bec3ed8a537c1e5cfd383c194ca5315268fa
-
Size
204KB
-
MD5
6de2af972d67d50ac73cd25f23f5e993
-
SHA1
22ed403f9afa1fea3c5052b57cc2923a97fb2724
-
SHA256
0167dfa1505eb3861e0616f6d082bec3ed8a537c1e5cfd383c194ca5315268fa
-
SHA512
96edcbd7b2f2b3d66332e8dd9ad9af1e202e8481f45fb16a8a646186ff09da3f8e2ba74de07df9df4c16e0db910431b8bd38f13646c3f89742015553e7118be4
-
SSDEEP
3072:6mIW88b0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWVk8:1dz4QxL7B9W0c1RCzR/fSmlu/
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-