General
-
Target
eddc294fc8599c7fccde15ac5516eb8fdab161aafe83e15a21dab41c98781765.lnk
-
Size
1KB
-
Sample
240523-cnxc3sad27
-
MD5
27251cc401cfe955c65b5512b5684f8b
-
SHA1
80c817b04ae8a395d8f078bbf4e117895c13e6bd
-
SHA256
eddc294fc8599c7fccde15ac5516eb8fdab161aafe83e15a21dab41c98781765
-
SHA512
c1ab81ca147a45d1d60008d3b1edb610552ebd60202a0f791352a139512fdae276b916c438254b48d72105ae061d98346f55c3c92866aa45c28483ca37f1717b
Static task
static1
Behavioral task
behavioral1
Sample
eddc294fc8599c7fccde15ac5516eb8fdab161aafe83e15a21dab41c98781765.lnk
Resource
win7-20240221-en
Malware Config
Extracted
https://foundationforwomenshealth.com/swim.hta
Targets
-
-
Target
eddc294fc8599c7fccde15ac5516eb8fdab161aafe83e15a21dab41c98781765.lnk
-
Size
1KB
-
MD5
27251cc401cfe955c65b5512b5684f8b
-
SHA1
80c817b04ae8a395d8f078bbf4e117895c13e6bd
-
SHA256
eddc294fc8599c7fccde15ac5516eb8fdab161aafe83e15a21dab41c98781765
-
SHA512
c1ab81ca147a45d1d60008d3b1edb610552ebd60202a0f791352a139512fdae276b916c438254b48d72105ae061d98346f55c3c92866aa45c28483ca37f1717b
-
Blocklisted process makes network request
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-