General
-
Target
2a79a215c4062fcdba530ef193c18671f38c5e2f87bc55270e77f8621dbf3573
-
Size
316KB
-
Sample
240428-yddzmsfd55
-
MD5
7a983e05228617eb59e2583a99c011f0
-
SHA1
a76c01acb530654e3c2007d6ab56361fea06773f
-
SHA256
2a79a215c4062fcdba530ef193c18671f38c5e2f87bc55270e77f8621dbf3573
-
SHA512
ee76d466a474364c9692878236ec9c6e86c44af7192f25efeded774993a9c932853caca44c24974cedd5bc55a9d97b5f15a9fd06e05418ae4aa9037bc14d54f9
-
SSDEEP
6144:9rTfUHeeSKOS9ccFKk3Y9t9YTcPeLFZhTgp:9n8yN0Mr8TcPehrMp
Static task
static1
Behavioral task
behavioral1
Sample
2a79a215c4062fcdba530ef193c18671f38c5e2f87bc55270e77f8621dbf3573.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
2a79a215c4062fcdba530ef193c18671f38c5e2f87bc55270e77f8621dbf3573.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
2a79a215c4062fcdba530ef193c18671f38c5e2f87bc55270e77f8621dbf3573
-
Size
316KB
-
MD5
7a983e05228617eb59e2583a99c011f0
-
SHA1
a76c01acb530654e3c2007d6ab56361fea06773f
-
SHA256
2a79a215c4062fcdba530ef193c18671f38c5e2f87bc55270e77f8621dbf3573
-
SHA512
ee76d466a474364c9692878236ec9c6e86c44af7192f25efeded774993a9c932853caca44c24974cedd5bc55a9d97b5f15a9fd06e05418ae4aa9037bc14d54f9
-
SSDEEP
6144:9rTfUHeeSKOS9ccFKk3Y9t9YTcPeLFZhTgp:9n8yN0Mr8TcPehrMp
Score9/10-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-