General
-
Target
Аdоbе Рhоtоshор 2024.exe
-
Size
172.0MB
-
Sample
240525-znsq8aae35
-
MD5
bb14f33a26af590f00e915ff3a1e35e6
-
SHA1
414f3a0d345de90a67dd81a743e9201927bcd142
-
SHA256
ea18b965ab43d927a1d690f395f4e2b55a15db9744f68454a86b5508b302c404
-
SHA512
3287f3c8979635cb0ed7d3748b719d418c339665a94be68a937e7fc0856831f6e5120c23a5f96ad890fd93b068b0fd57bfbd8c9a08f2bf6d259617e86c1d7dfc
-
SSDEEP
3145728:ayDd2NHceT9JMuwVK7eBmCd+kbidragqT6ugQGibL1N3ISPGtNtIdDtswZ6Y2zVr:s8eT9HwVKh77dGgq1zGiNNYYiqYzvf/1
Malware Config
Targets
-
-
Target
Аdоbе Рhоtоshор 2024.exe
-
Size
172.0MB
-
MD5
bb14f33a26af590f00e915ff3a1e35e6
-
SHA1
414f3a0d345de90a67dd81a743e9201927bcd142
-
SHA256
ea18b965ab43d927a1d690f395f4e2b55a15db9744f68454a86b5508b302c404
-
SHA512
3287f3c8979635cb0ed7d3748b719d418c339665a94be68a937e7fc0856831f6e5120c23a5f96ad890fd93b068b0fd57bfbd8c9a08f2bf6d259617e86c1d7dfc
-
SSDEEP
3145728:ayDd2NHceT9JMuwVK7eBmCd+kbidragqT6ugQGibL1N3ISPGtNtIdDtswZ6Y2zVr:s8eT9HwVKh77dGgq1zGiNNYYiqYzvf/1
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-