General
-
Target
dd6289596967014bf5879a28bad6302f0a3189a34b4abc8f39680f793460517a
-
Size
88KB
-
Sample
240509-ffed3sec95
-
MD5
ede394aca38b569dd3bfda2ec4e5f160
-
SHA1
0e16c5c8ede4301c4224fc91d6d95ce190f0518a
-
SHA256
dd6289596967014bf5879a28bad6302f0a3189a34b4abc8f39680f793460517a
-
SHA512
52ce61d5b1a473ba4b48110208567e08f355c199832b542c673a0947d9c64f708d168299da24ade70600ab65c9759f6021e46d3879c3cf30251c522e416fee02
-
SSDEEP
768:vAr68qOJ+Ttnj/AxqwHpFeh6gM1rA8dOsc7jUq4RkA5o3K1DfsvtzsXjLft+9o1r:vArHqlZWLFjnAzA5o6BfItoXjLl0hm
Malware Config
Targets
-
-
Target
dd6289596967014bf5879a28bad6302f0a3189a34b4abc8f39680f793460517a
-
Size
88KB
-
MD5
ede394aca38b569dd3bfda2ec4e5f160
-
SHA1
0e16c5c8ede4301c4224fc91d6d95ce190f0518a
-
SHA256
dd6289596967014bf5879a28bad6302f0a3189a34b4abc8f39680f793460517a
-
SHA512
52ce61d5b1a473ba4b48110208567e08f355c199832b542c673a0947d9c64f708d168299da24ade70600ab65c9759f6021e46d3879c3cf30251c522e416fee02
-
SSDEEP
768:vAr68qOJ+Ttnj/AxqwHpFeh6gM1rA8dOsc7jUq4RkA5o3K1DfsvtzsXjLft+9o1r:vArHqlZWLFjnAzA5o6BfItoXjLl0hm
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-