General
-
Target
fff8ce9a18cdd566472fa8aabb1a3f078c06f7bfb6f8c7ec901d6122a22d3c3f
-
Size
208KB
-
Sample
240418-fc6ddscf9x
-
MD5
197a4565e022c4b97a703ed56070a128
-
SHA1
a91215f70133bab7301f2b8311606ad9bc1b4f19
-
SHA256
fff8ce9a18cdd566472fa8aabb1a3f078c06f7bfb6f8c7ec901d6122a22d3c3f
-
SHA512
43799e7e72e35a3f2d07f50fa124402e1fa88bc5a80241129d773cc49454803dfd06f41a50dfe3de6411ef3d19e40bfe25ab5003dc0652ea6accbfcba80adc3b
-
SSDEEP
3072:puOL3HYTWor5J20AisM/8jp6tdlWbRVslWQifgO4F0llD:pmTWqJ3RsM/8E/IbRuLifI0l
Malware Config
Targets
-
-
Target
fff8ce9a18cdd566472fa8aabb1a3f078c06f7bfb6f8c7ec901d6122a22d3c3f
-
Size
208KB
-
MD5
197a4565e022c4b97a703ed56070a128
-
SHA1
a91215f70133bab7301f2b8311606ad9bc1b4f19
-
SHA256
fff8ce9a18cdd566472fa8aabb1a3f078c06f7bfb6f8c7ec901d6122a22d3c3f
-
SHA512
43799e7e72e35a3f2d07f50fa124402e1fa88bc5a80241129d773cc49454803dfd06f41a50dfe3de6411ef3d19e40bfe25ab5003dc0652ea6accbfcba80adc3b
-
SSDEEP
3072:puOL3HYTWor5J20AisM/8jp6tdlWbRVslWQifgO4F0llD:pmTWqJ3RsM/8E/IbRuLifI0l
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-