General
-
Target
2024-06-13_1ac4bdff94046f98ab7c17cbb96ea98b_avoslocker_cobalt-strike
-
Size
495KB
-
Sample
240613-fbxpvsyarl
-
MD5
1ac4bdff94046f98ab7c17cbb96ea98b
-
SHA1
7a451661d4bf1c4f8847c6fb7be6be19e33ed1ab
-
SHA256
1f69ad54f28e4f9054e17e4670f244464b013008f71ad3aa145593d1770926ad
-
SHA512
5795b73a54830f2ed7824cbefd6bb8ce41e072271a4ecf66fd88190708215cc5ca2c506c482db782c847ba51b196bae38446492874411a3210d949396bde2605
-
SSDEEP
6144:87WQ0j4ltziolIGlnE2deW3rlBu0R+J5JlLgPYfq8ZF02IlLZDj0nXes2I:ci4lZiop3fu0R+J5JlLgPbDj0nF2I
Static task
static1
Behavioral task
behavioral1
Sample
2024-06-13_1ac4bdff94046f98ab7c17cbb96ea98b_avoslocker_cobalt-strike.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
2024-06-13_1ac4bdff94046f98ab7c17cbb96ea98b_avoslocker_cobalt-strike
-
Size
495KB
-
MD5
1ac4bdff94046f98ab7c17cbb96ea98b
-
SHA1
7a451661d4bf1c4f8847c6fb7be6be19e33ed1ab
-
SHA256
1f69ad54f28e4f9054e17e4670f244464b013008f71ad3aa145593d1770926ad
-
SHA512
5795b73a54830f2ed7824cbefd6bb8ce41e072271a4ecf66fd88190708215cc5ca2c506c482db782c847ba51b196bae38446492874411a3210d949396bde2605
-
SSDEEP
6144:87WQ0j4ltziolIGlnE2deW3rlBu0R+J5JlLgPYfq8ZF02IlLZDj0nXes2I:ci4lZiop3fu0R+J5JlLgPbDj0nF2I
-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-