General
-
Target
MDE File Sample.zip
-
Size
9.3MB
-
Sample
240612-w742tavfrd
-
MD5
bc1e1f0def5f3f6315441cf7d1fc7e34
-
SHA1
36fe5646b08219d11aa012d3cd00fd51632d7f55
-
SHA256
20630ea261a7055e24b14a92b55c93d0af59ce7c2c9b3e642416df30fdfc59a5
-
SHA512
9148bdb6f551cf2d61848dd46264d3268f9ba8818836a20a660bb6ca36fa46021c9ab57e3c670094778a82f6976ac354cf696cb6e6d9d2a97c712c210b1b1bc4
-
SSDEEP
196608:aJzWWd3DARvJDnX8pUHdn1zI2Tdz8fme56ALKV/6lyOh7OUiw66ZmOrSTNTDYeiA:alWWJDARRbGULI1fmg7c4y0OUiOYOrSb
Static task
static1
Behavioral task
behavioral1
Sample
Setup.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
Setup.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
Setup.exe
-
Size
9.8MB
-
MD5
2cf71e22becf0ef89a881838c6421d21
-
SHA1
ff0a5c9c614ac65730bea453b2a8f5d1295c909f
-
SHA256
05b5395c452dc7f18e98d029111b2e93b53b342af75e701f0bd301cc7dac2d9f
-
SHA512
fec7aa9d3091a9531a37ee3ae504635088eb5225068f9e8dc9765fe71da35ec3627cb3eb27bb0ce76f7dec593f73a46e7a347420729a0283a4036191bcef1ef1
-
SSDEEP
196608:bhHh86KKAqxihfpkLwngFdk6yjFPMHeDuEiwSKjTrNCFc:dHb1AthfpUqlF2eL5S0Nyc
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-