General
-
Target
47e009f36a5ee2c9f6624bb687cc9bd168c91935f84ad4d692d2fd3c018f054a
-
Size
65KB
-
Sample
240608-2lxcqsab83
-
MD5
b54a841cdb5c6fc2c0be5dc045f57136
-
SHA1
fd50f6f105afaf7e43120eed68f74aa253156968
-
SHA256
47e009f36a5ee2c9f6624bb687cc9bd168c91935f84ad4d692d2fd3c018f054a
-
SHA512
46dfc88cef1b44dc70c695fc7cccbe2e2708d7e346e7261a2c60a2d82442ea52f56a1b52aed7f2532c68053c8ec523ee580b92bb9db5f3ac3ae29fed13c23972
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6C:Zr3Z5IfQIR81ad5yX6C
Malware Config
Targets
-
-
Target
47e009f36a5ee2c9f6624bb687cc9bd168c91935f84ad4d692d2fd3c018f054a
-
Size
65KB
-
MD5
b54a841cdb5c6fc2c0be5dc045f57136
-
SHA1
fd50f6f105afaf7e43120eed68f74aa253156968
-
SHA256
47e009f36a5ee2c9f6624bb687cc9bd168c91935f84ad4d692d2fd3c018f054a
-
SHA512
46dfc88cef1b44dc70c695fc7cccbe2e2708d7e346e7261a2c60a2d82442ea52f56a1b52aed7f2532c68053c8ec523ee580b92bb9db5f3ac3ae29fed13c23972
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6C:Zr3Z5IfQIR81ad5yX6C
Score9/10-
Detects Windows executables referencing non-Windows User-Agents
-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-