General
-
Target
2f970ca88e39ef0a86f5d169c4296f67e147d439ceb7c599c4e88dcd65e7b660
-
Size
90KB
-
Sample
240429-ys1rysbd24
-
MD5
4d512ac90b7463514a313149aaa5d2b9
-
SHA1
57ae54346fb9f40b350213feedd17aa5d1f10cae
-
SHA256
2f970ca88e39ef0a86f5d169c4296f67e147d439ceb7c599c4e88dcd65e7b660
-
SHA512
10d633b0bd4ed682a30d250b8870458dc3a143ac141e70aeb6c911bacc538c6076085cea5655c11656606ba00d412f73beb06d6b95f361aac02d10a46fdfe9c6
-
SSDEEP
1536:IYjIyeC1eUfKjkhBYJ7mTCbqODiC1ZsyHZK0FjlqsS5eHyG9LU3YG8nN:xdEUfKj8BYbDiC1ZTK7sxtLUIGw
Malware Config
Targets
-
-
Target
2f970ca88e39ef0a86f5d169c4296f67e147d439ceb7c599c4e88dcd65e7b660
-
Size
90KB
-
MD5
4d512ac90b7463514a313149aaa5d2b9
-
SHA1
57ae54346fb9f40b350213feedd17aa5d1f10cae
-
SHA256
2f970ca88e39ef0a86f5d169c4296f67e147d439ceb7c599c4e88dcd65e7b660
-
SHA512
10d633b0bd4ed682a30d250b8870458dc3a143ac141e70aeb6c911bacc538c6076085cea5655c11656606ba00d412f73beb06d6b95f361aac02d10a46fdfe9c6
-
SSDEEP
1536:IYjIyeC1eUfKjkhBYJ7mTCbqODiC1ZsyHZK0FjlqsS5eHyG9LU3YG8nN:xdEUfKj8BYbDiC1ZTK7sxtLUIGw
Score9/10-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-