General
-
Target
ed5d6221a4d95b4eb1c2fd0bc73c09ce09697d5603f2517477cac28253846307
-
Size
248KB
-
Sample
240416-ds3lbsgb33
-
MD5
8fb3b9e7f8fbe2ba48725ef2dfe851d7
-
SHA1
8bd6a465f9f3300aa0002edb5af8f351d86d45e7
-
SHA256
ed5d6221a4d95b4eb1c2fd0bc73c09ce09697d5603f2517477cac28253846307
-
SHA512
caa1672c8c81cccdd3550d430da4f06a87a8eef722950125217f06b2a5a5b59d03d0dcc8e250de1ac8f9b151f5206781839547ecf2e8cd213479c6f78c16fc94
-
SSDEEP
6144:tgULTn7/ffEBRwwCQeqG6dQ+hP3v/eO2mbW0MtYN3fdhpUHvNlbavtEU:tLEBRYlL6dnhP3v/eO2mbW0MtYN3fdh/
Malware Config
Targets
-
-
Target
ed5d6221a4d95b4eb1c2fd0bc73c09ce09697d5603f2517477cac28253846307
-
Size
248KB
-
MD5
8fb3b9e7f8fbe2ba48725ef2dfe851d7
-
SHA1
8bd6a465f9f3300aa0002edb5af8f351d86d45e7
-
SHA256
ed5d6221a4d95b4eb1c2fd0bc73c09ce09697d5603f2517477cac28253846307
-
SHA512
caa1672c8c81cccdd3550d430da4f06a87a8eef722950125217f06b2a5a5b59d03d0dcc8e250de1ac8f9b151f5206781839547ecf2e8cd213479c6f78c16fc94
-
SSDEEP
6144:tgULTn7/ffEBRwwCQeqG6dQ+hP3v/eO2mbW0MtYN3fdhpUHvNlbavtEU:tLEBRYlL6dnhP3v/eO2mbW0MtYN3fdh/
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-