General
-
Target
dc407a7548630c13113d468564f7f7a2bf19cd2c83ff58552f3b4778f4bfdc59
-
Size
156KB
-
Sample
240425-eqw67sfb7w
-
MD5
cf1e22d4b427f32f2e0812aa3e8bb25a
-
SHA1
6277f06792358cc6f0c9c0a34d7dd91481ad2d8a
-
SHA256
dc407a7548630c13113d468564f7f7a2bf19cd2c83ff58552f3b4778f4bfdc59
-
SHA512
8f139da7f5d79149551347d53cdce13c0ac3b0acd6071ccd4075aaab47318f38ea3ad42137baf7cc1a6c281638716890cddc7c088f10e4e2f285a5005864c683
-
SSDEEP
3072:A0O2q9j5h3QKWXXWXG8FF7K+AmsgE5kEZZZy6x84JE5j4oQ:C9jX3QKKXWFFF7KlgaSPd
Malware Config
Targets
-
-
Target
dc407a7548630c13113d468564f7f7a2bf19cd2c83ff58552f3b4778f4bfdc59
-
Size
156KB
-
MD5
cf1e22d4b427f32f2e0812aa3e8bb25a
-
SHA1
6277f06792358cc6f0c9c0a34d7dd91481ad2d8a
-
SHA256
dc407a7548630c13113d468564f7f7a2bf19cd2c83ff58552f3b4778f4bfdc59
-
SHA512
8f139da7f5d79149551347d53cdce13c0ac3b0acd6071ccd4075aaab47318f38ea3ad42137baf7cc1a6c281638716890cddc7c088f10e4e2f285a5005864c683
-
SSDEEP
3072:A0O2q9j5h3QKWXXWXG8FF7K+AmsgE5kEZZZy6x84JE5j4oQ:C9jX3QKKXWFFF7KlgaSPd
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-