General
-
Target
9e74bb8693bb212a24e7aed7f1dcc7d1d694112495b1aa9ccc6bd07209a02a4f
-
Size
132KB
-
Sample
240523-bfvzlsfg7x
-
MD5
769aa3dc2207349b51f5c69c1a8948d7
-
SHA1
9846b98fa69f4e8b352175d8afb9ea4481c1eed2
-
SHA256
9e74bb8693bb212a24e7aed7f1dcc7d1d694112495b1aa9ccc6bd07209a02a4f
-
SHA512
252a903632c48c6a44c48a8e3b37a1d417d822f0e9e55e245f6a74c2362eeaa3542e19ee1d4caaf967816f39254c68ed9930d35f32ecc2d9ca1369399af8b198
-
SSDEEP
3072:2ApldiR+xspX7//GSeIlL0kskMvB00bsMyXeWLky:2ApmRI+7//leIB0TkMZ00bsMyXeAk
Malware Config
Targets
-
-
Target
9e74bb8693bb212a24e7aed7f1dcc7d1d694112495b1aa9ccc6bd07209a02a4f
-
Size
132KB
-
MD5
769aa3dc2207349b51f5c69c1a8948d7
-
SHA1
9846b98fa69f4e8b352175d8afb9ea4481c1eed2
-
SHA256
9e74bb8693bb212a24e7aed7f1dcc7d1d694112495b1aa9ccc6bd07209a02a4f
-
SHA512
252a903632c48c6a44c48a8e3b37a1d417d822f0e9e55e245f6a74c2362eeaa3542e19ee1d4caaf967816f39254c68ed9930d35f32ecc2d9ca1369399af8b198
-
SSDEEP
3072:2ApldiR+xspX7//GSeIlL0kskMvB00bsMyXeWLky:2ApmRI+7//leIB0TkMZ00bsMyXeAk
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-