General
-
Target
579db2ff3a88264e10e8119329e1147f66c491ed761fe60f9a8916a66b051b22
-
Size
72KB
-
Sample
240428-z9hhdahe57
-
MD5
aa9d95938de21a3d306face7769fa7a7
-
SHA1
75282b6ae2776986ff628e55543598ed65dba29e
-
SHA256
579db2ff3a88264e10e8119329e1147f66c491ed761fe60f9a8916a66b051b22
-
SHA512
9cf831b6f657547437e62688f407f7808992c2ce5eb9bbe819ee4653b8847977babb63f64e7a4644b2eeee3e50d27b93c2a1fbacc42b5492a5d360186610d8c0
-
SSDEEP
768:F/3ed1zZN/zoy0rtsDIilcXe1MFW5ToAPTUVfGPIXRonyAmzGKVuF:FvWbzoZONTeapuVuF
Malware Config
Targets
-
-
Target
579db2ff3a88264e10e8119329e1147f66c491ed761fe60f9a8916a66b051b22
-
Size
72KB
-
MD5
aa9d95938de21a3d306face7769fa7a7
-
SHA1
75282b6ae2776986ff628e55543598ed65dba29e
-
SHA256
579db2ff3a88264e10e8119329e1147f66c491ed761fe60f9a8916a66b051b22
-
SHA512
9cf831b6f657547437e62688f407f7808992c2ce5eb9bbe819ee4653b8847977babb63f64e7a4644b2eeee3e50d27b93c2a1fbacc42b5492a5d360186610d8c0
-
SSDEEP
768:F/3ed1zZN/zoy0rtsDIilcXe1MFW5ToAPTUVfGPIXRonyAmzGKVuF:FvWbzoZONTeapuVuF
Score9/10-
Detects executables built or packed with MPress PE compressor
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-