General
-
Target
fac87644b513cdab84912e50f2ecc03d2851047b5fe9f41b9e3ab42dbe0bbaba
-
Size
168KB
-
Sample
240425-f6dkgagb7x
-
MD5
d55e6de8bfab07136b2cc4504da05671
-
SHA1
c4856f6445640ba912275e55c45d0080a4d96855
-
SHA256
fac87644b513cdab84912e50f2ecc03d2851047b5fe9f41b9e3ab42dbe0bbaba
-
SHA512
201ea0fd521f90c11d9eb5d2f65adbda3be991c8600301f1f41c818ffece4c336265840faf5e720c3a871aa7ff92b7bd3359245ff6b514e30c1897db7a13a374
-
SSDEEP
1536:oeh5LcmJPqPjzTGRVu+1niPRC7gIeTo8dzQhihZOy+AMnmE7UkAUJZvhICqDojhq:DmiPqPjzTGRVuI7bkzrhT+nmEASq
Malware Config
Targets
-
-
Target
fac87644b513cdab84912e50f2ecc03d2851047b5fe9f41b9e3ab42dbe0bbaba
-
Size
168KB
-
MD5
d55e6de8bfab07136b2cc4504da05671
-
SHA1
c4856f6445640ba912275e55c45d0080a4d96855
-
SHA256
fac87644b513cdab84912e50f2ecc03d2851047b5fe9f41b9e3ab42dbe0bbaba
-
SHA512
201ea0fd521f90c11d9eb5d2f65adbda3be991c8600301f1f41c818ffece4c336265840faf5e720c3a871aa7ff92b7bd3359245ff6b514e30c1897db7a13a374
-
SSDEEP
1536:oeh5LcmJPqPjzTGRVu+1niPRC7gIeTo8dzQhihZOy+AMnmE7UkAUJZvhICqDojhq:DmiPqPjzTGRVuI7bkzrhT+nmEASq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-