General
-
Target
22fad79d01398f7fa7a82986c319d0964508da666117fadb59845b617a77a3fb
-
Size
102KB
-
Sample
240524-ybqknaha36
-
MD5
2494491f7f6287f30b46442eae071e4b
-
SHA1
ea34be368229a385f32c587d834e675012dfafeb
-
SHA256
22fad79d01398f7fa7a82986c319d0964508da666117fadb59845b617a77a3fb
-
SHA512
a8fa365fab2e29358dfc578f7e1315165c93a18bd93662c226bde96412e1862a249d9e1abd39547266a41997628f5d22678dd39de0cb80509567741d7014d702
-
SSDEEP
1536:SwvWyX3kzGusSQ007k1sX/MiP1gOXqNgXmIZwZO8TkiNfyjYyW/WxD4:SwvWyX1insPZgOggXmIZwZOykO+YyhE
Static task
static1
Behavioral task
behavioral1
Sample
22fad79d01398f7fa7a82986c319d0964508da666117fadb59845b617a77a3fb.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
22fad79d01398f7fa7a82986c319d0964508da666117fadb59845b617a77a3fb
-
Size
102KB
-
MD5
2494491f7f6287f30b46442eae071e4b
-
SHA1
ea34be368229a385f32c587d834e675012dfafeb
-
SHA256
22fad79d01398f7fa7a82986c319d0964508da666117fadb59845b617a77a3fb
-
SHA512
a8fa365fab2e29358dfc578f7e1315165c93a18bd93662c226bde96412e1862a249d9e1abd39547266a41997628f5d22678dd39de0cb80509567741d7014d702
-
SSDEEP
1536:SwvWyX3kzGusSQ007k1sX/MiP1gOXqNgXmIZwZO8TkiNfyjYyW/WxD4:SwvWyX1insPZgOggXmIZwZOykO+YyhE
-
Detects Windows executables referencing non-Windows User-Agents
-
UPX dump on OEP (original entry point)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-