General
-
Target
d1afe64c1628a4d6270409ad40e696b0b05e0838bbe58b8675aba3820c3a9a10
-
Size
400KB
-
Sample
240424-zz1wzahg53
-
MD5
8ff6ab8a1cef009bb895eb91ef500952
-
SHA1
df98b497eaccb36a981b20ecad3869728771f46f
-
SHA256
d1afe64c1628a4d6270409ad40e696b0b05e0838bbe58b8675aba3820c3a9a10
-
SHA512
d61ff516d0314372ca49a8d67cdf346e6a3f79d3e338845a53b01bbc761f6066d3998bc57a654600010b7cf446a198fcdf91868a943d5a8b9e73f6eb62801835
-
SSDEEP
6144:C4MYvqF+2KNBjVnP6oo3CYslL6+SL8g92S0+GlajBZDwcrdzYA0JxIkYofix:CrYrJl6LCY2kt2SX5jMWYVbV6x
Malware Config
Targets
-
-
Target
d1afe64c1628a4d6270409ad40e696b0b05e0838bbe58b8675aba3820c3a9a10
-
Size
400KB
-
MD5
8ff6ab8a1cef009bb895eb91ef500952
-
SHA1
df98b497eaccb36a981b20ecad3869728771f46f
-
SHA256
d1afe64c1628a4d6270409ad40e696b0b05e0838bbe58b8675aba3820c3a9a10
-
SHA512
d61ff516d0314372ca49a8d67cdf346e6a3f79d3e338845a53b01bbc761f6066d3998bc57a654600010b7cf446a198fcdf91868a943d5a8b9e73f6eb62801835
-
SSDEEP
6144:C4MYvqF+2KNBjVnP6oo3CYslL6+SL8g92S0+GlajBZDwcrdzYA0JxIkYofix:CrYrJl6LCY2kt2SX5jMWYVbV6x
Score9/10-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-