General
-
Target
e036eda681626cc0a7cf380bf2305b5ebd0b69741ce70b41f158bc9d3f56918c
-
Size
65KB
-
Sample
240425-ex3bssfb43
-
MD5
97f73147e11abebfe25f5e6b4461d449
-
SHA1
e2b0f8f7511297b5da915096f9ac6eb4d057a6e0
-
SHA256
e036eda681626cc0a7cf380bf2305b5ebd0b69741ce70b41f158bc9d3f56918c
-
SHA512
0ee3b2beca57d92ee5bf32f5d9d4ad3241dfb021a3eb65f0f63d92662ccbab3c09cf9ce5edb5c7fd6461783ef39801b044e51b29cd19b7b3ae95e1775b1bb146
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6W:Zr3Z5IfQIR81ad5yX6W
Malware Config
Targets
-
-
Target
e036eda681626cc0a7cf380bf2305b5ebd0b69741ce70b41f158bc9d3f56918c
-
Size
65KB
-
MD5
97f73147e11abebfe25f5e6b4461d449
-
SHA1
e2b0f8f7511297b5da915096f9ac6eb4d057a6e0
-
SHA256
e036eda681626cc0a7cf380bf2305b5ebd0b69741ce70b41f158bc9d3f56918c
-
SHA512
0ee3b2beca57d92ee5bf32f5d9d4ad3241dfb021a3eb65f0f63d92662ccbab3c09cf9ce5edb5c7fd6461783ef39801b044e51b29cd19b7b3ae95e1775b1bb146
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6W:Zr3Z5IfQIR81ad5yX6W
Score9/10-
Detects Windows executables referencing non-Windows User-Agents
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-