General
-
Target
WhatsApp_Image_2024-05-06.lnk
-
Size
1KB
-
Sample
240613-dwjbvsseqf
-
MD5
4dfdacf33db6ae0341b4d0e65aa3d755
-
SHA1
ec0d21c64a55b45182fc9aedd3adcecf05ed492f
-
SHA256
683c61f8dda90ea3b1e76f2ff5ad78dc03ebe3827d56536988a9c5e4490eabd2
-
SHA512
c2a6f73cb33d57e919695144f55e8675cb44b01ea18ecf2fcb2f2ec4a0c0022615397a9d40350fad99d8b4275afcdc16ad0d5ddbd9db57b8824bff7a5b7526cb
Static task
static1
Behavioral task
behavioral1
Sample
WhatsApp_Image_2024-05-06.lnk
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
WhatsApp_Image_2024-05-06.lnk
Resource
win10v2004-20240508-en
Malware Config
Extracted
https://dipl.site/Content/2022-23/01/03/
Targets
-
-
Target
WhatsApp_Image_2024-05-06.lnk
-
Size
1KB
-
MD5
4dfdacf33db6ae0341b4d0e65aa3d755
-
SHA1
ec0d21c64a55b45182fc9aedd3adcecf05ed492f
-
SHA256
683c61f8dda90ea3b1e76f2ff5ad78dc03ebe3827d56536988a9c5e4490eabd2
-
SHA512
c2a6f73cb33d57e919695144f55e8675cb44b01ea18ecf2fcb2f2ec4a0c0022615397a9d40350fad99d8b4275afcdc16ad0d5ddbd9db57b8824bff7a5b7526cb
Score10/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-