General
-
Target
4595a3c77d7fd8fdd983139c3eef8594964f28643ef5f5b33a7dde763bab1b02
-
Size
240KB
-
Sample
240502-z1p6vsfd8t
-
MD5
853fd46b17b3b91818c5b0b12277ce02
-
SHA1
9c777ce348ef481295ceec88c57911a42e6a9af3
-
SHA256
4595a3c77d7fd8fdd983139c3eef8594964f28643ef5f5b33a7dde763bab1b02
-
SHA512
6ad9d63d5291474239ad64cf01782af35f20390a5839a67ab439e468fc11202509b38ba1fbc6e2a845e3bc25a15df778c82e5caf026c50fabf425edfbbdadf55
-
SSDEEP
1536:iQyStrt18x4xTtxNy3tQ9CW5EZWHakMwP9W6uXN39LxxFzWGqWX/8irw5Ftm9g7k:fygt10tQ9nLHbB9WJvA7DejJuKvEhfm
Malware Config
Targets
-
-
Target
4595a3c77d7fd8fdd983139c3eef8594964f28643ef5f5b33a7dde763bab1b02
-
Size
240KB
-
MD5
853fd46b17b3b91818c5b0b12277ce02
-
SHA1
9c777ce348ef481295ceec88c57911a42e6a9af3
-
SHA256
4595a3c77d7fd8fdd983139c3eef8594964f28643ef5f5b33a7dde763bab1b02
-
SHA512
6ad9d63d5291474239ad64cf01782af35f20390a5839a67ab439e468fc11202509b38ba1fbc6e2a845e3bc25a15df778c82e5caf026c50fabf425edfbbdadf55
-
SSDEEP
1536:iQyStrt18x4xTtxNy3tQ9CW5EZWHakMwP9W6uXN39LxxFzWGqWX/8irw5Ftm9g7k:fygt10tQ9nLHbB9WJvA7DejJuKvEhfm
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-