General
-
Target
b4eaf46a3f0cdef69f054d18d5c3c3bbf8c3843ecb6df00b124840c4051fb7c4
-
Size
2.3MB
-
Sample
240625-nl5gfszflj
-
MD5
16ff011dcdd203ed50522b0495da07c2
-
SHA1
8914e394a89f0ba8c634438b00c881459c812017
-
SHA256
b4eaf46a3f0cdef69f054d18d5c3c3bbf8c3843ecb6df00b124840c4051fb7c4
-
SHA512
a1e1a12a6753776e2d4bec31fcb94fcc6582fcc2300dfd4c6f5e77d0b68c18577fdc7998dbb709e3c85026c75399a7fbc6d4467327bbb06822cf44371b625e5f
-
SSDEEP
49152:sri/kTIiaWG55+ovfGYqEAf8RlPMJlio68D:srlLaWG55+ovfGYqEAf8RlPlo68
Malware Config
Targets
-
-
Target
b4eaf46a3f0cdef69f054d18d5c3c3bbf8c3843ecb6df00b124840c4051fb7c4
-
Size
2.3MB
-
MD5
16ff011dcdd203ed50522b0495da07c2
-
SHA1
8914e394a89f0ba8c634438b00c881459c812017
-
SHA256
b4eaf46a3f0cdef69f054d18d5c3c3bbf8c3843ecb6df00b124840c4051fb7c4
-
SHA512
a1e1a12a6753776e2d4bec31fcb94fcc6582fcc2300dfd4c6f5e77d0b68c18577fdc7998dbb709e3c85026c75399a7fbc6d4467327bbb06822cf44371b625e5f
-
SSDEEP
49152:sri/kTIiaWG55+ovfGYqEAf8RlPMJlio68D:srlLaWG55+ovfGYqEAf8RlPlo68
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-