General
-
Target
c0af1ce352a449085901369d5a2609aa8ace25e92f3bbc3a6d70c78969c4a0b3
-
Size
196KB
-
Sample
240523-c3sy7sag91
-
MD5
5181b2d1d46f86cf79e100210ca61c79
-
SHA1
45b883ef1ce728f890718601984ed3da450155f1
-
SHA256
c0af1ce352a449085901369d5a2609aa8ace25e92f3bbc3a6d70c78969c4a0b3
-
SHA512
5f5c4865371c7e0cbc9ab0bf3be24b87fa48e49c78b568744ae547e405c572c2efb98387f649418930f6722c47c23b3885973b9ed0436540d052aabfda22a981
-
SSDEEP
1536:UWtkjQTQfU0GgAJx1kNmKldcBP9VeYDvcC:pkj3fU0GgAX9
Static task
static1
Behavioral task
behavioral1
Sample
c0af1ce352a449085901369d5a2609aa8ace25e92f3bbc3a6d70c78969c4a0b3.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
c0af1ce352a449085901369d5a2609aa8ace25e92f3bbc3a6d70c78969c4a0b3.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
c0af1ce352a449085901369d5a2609aa8ace25e92f3bbc3a6d70c78969c4a0b3
-
Size
196KB
-
MD5
5181b2d1d46f86cf79e100210ca61c79
-
SHA1
45b883ef1ce728f890718601984ed3da450155f1
-
SHA256
c0af1ce352a449085901369d5a2609aa8ace25e92f3bbc3a6d70c78969c4a0b3
-
SHA512
5f5c4865371c7e0cbc9ab0bf3be24b87fa48e49c78b568744ae547e405c572c2efb98387f649418930f6722c47c23b3885973b9ed0436540d052aabfda22a981
-
SSDEEP
1536:UWtkjQTQfU0GgAJx1kNmKldcBP9VeYDvcC:pkj3fU0GgAX9
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-