General
-
Target
virussign.com_27eee676babdd6aa1be84531f1f58910.vir
-
Size
282KB
-
Sample
240602-le6d3ahb9t
-
MD5
27eee676babdd6aa1be84531f1f58910
-
SHA1
71890ad51f035895b1a5a9dc1bc257c537f8dcbf
-
SHA256
27f6e903ed0b57e2f6ce26edebb64eb7d298c23438eaee11a102b98994e6ccde
-
SHA512
6d6adbb715a9906b4327ceec7b618ab100524c4d08c8415040f5d3796f27c34430fdf7a0a2576600ebe35f97c430ee505b4175ed1ed1fffe5e45f5c3dcd2f876
-
SSDEEP
6144:zDNHLdoTTka2k7BDnthPLP6f7udQkEjiPISUOgW9X+hOGzC/:NWHka2k7BBxPakmZzcukG2/
Behavioral task
behavioral1
Sample
virussign.com_27eee676babdd6aa1be84531f1f58910.exe
Resource
win7-20240220-en
Malware Config
Targets
-
-
Target
virussign.com_27eee676babdd6aa1be84531f1f58910.vir
-
Size
282KB
-
MD5
27eee676babdd6aa1be84531f1f58910
-
SHA1
71890ad51f035895b1a5a9dc1bc257c537f8dcbf
-
SHA256
27f6e903ed0b57e2f6ce26edebb64eb7d298c23438eaee11a102b98994e6ccde
-
SHA512
6d6adbb715a9906b4327ceec7b618ab100524c4d08c8415040f5d3796f27c34430fdf7a0a2576600ebe35f97c430ee505b4175ed1ed1fffe5e45f5c3dcd2f876
-
SSDEEP
6144:zDNHLdoTTka2k7BDnthPLP6f7udQkEjiPISUOgW9X+hOGzC/:NWHka2k7BBxPakmZzcukG2/
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-