General
-
Target
1e215d27fa116f0a6e052dcd97257bcdc70e46d02d4c7a08b17b6564c01436e3
-
Size
140KB
-
Sample
240405-x2mq1scd28
-
MD5
54429c1b6f08a6737da96498fe66576e
-
SHA1
f53a477e2a2700ea96c47269cea583b69fe98413
-
SHA256
1e215d27fa116f0a6e052dcd97257bcdc70e46d02d4c7a08b17b6564c01436e3
-
SHA512
482a659076ccdc358b3d6a723ebdf43f71824eb4cf45380d6eb22e9b86aa432d6522b8d4f236f00198d35edb053a879cf60a88c482997e69da5d7026bcbbd3e2
-
SSDEEP
3072:Qa21T3vu3XuIcN6/xbccM3hEL8fyUha5fJiYgpo:Qao/uuIcNmLX8dhaRJi8
Malware Config
Targets
-
-
Target
1e215d27fa116f0a6e052dcd97257bcdc70e46d02d4c7a08b17b6564c01436e3
-
Size
140KB
-
MD5
54429c1b6f08a6737da96498fe66576e
-
SHA1
f53a477e2a2700ea96c47269cea583b69fe98413
-
SHA256
1e215d27fa116f0a6e052dcd97257bcdc70e46d02d4c7a08b17b6564c01436e3
-
SHA512
482a659076ccdc358b3d6a723ebdf43f71824eb4cf45380d6eb22e9b86aa432d6522b8d4f236f00198d35edb053a879cf60a88c482997e69da5d7026bcbbd3e2
-
SSDEEP
3072:Qa21T3vu3XuIcN6/xbccM3hEL8fyUha5fJiYgpo:Qao/uuIcNmLX8dhaRJi8
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-