General
-
Target
14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a.exe
-
Size
12KB
-
Sample
240522-c4rsjahf69
-
MD5
04ecdeca7a854a055635a3cc7e0466a0
-
SHA1
29574fe29abfcecaa893a593f7c6854b64d24e22
-
SHA256
14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a
-
SHA512
286202f5979ae2fc9a87ed64983686a008c678e4c7c951797822323e89bcc03ca31a748c04d5b4330e8dc5f2e4e23c078329704f8fbb1f609ea439d7a6ffc02d
-
SSDEEP
384:SL7li/2z0q2DcEQvdhcJKLTp/NK9xa0b:MQM/Q9c0b
Malware Config
Targets
-
-
Target
14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a.exe
-
Size
12KB
-
MD5
04ecdeca7a854a055635a3cc7e0466a0
-
SHA1
29574fe29abfcecaa893a593f7c6854b64d24e22
-
SHA256
14b545ee3cb019979679be594cfc19ff6995cb45b85812131ebbcce96e22ab2a
-
SHA512
286202f5979ae2fc9a87ed64983686a008c678e4c7c951797822323e89bcc03ca31a748c04d5b4330e8dc5f2e4e23c078329704f8fbb1f609ea439d7a6ffc02d
-
SSDEEP
384:SL7li/2z0q2DcEQvdhcJKLTp/NK9xa0b:MQM/Q9c0b
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Uses the VBS compiler for execution
-