General
-
Target
SigmaHacks.exe
-
Size
6.1MB
-
Sample
240626-klp5zswcjh
-
MD5
5d5b027a205f7914b26f9eef7bbce415
-
SHA1
0bbdd505b9491659e97ac683eaf21454e2ed3e11
-
SHA256
507796e4d1229ac142af72abed8e5355f61f4c633a2d6dc73203b3674925e8ee
-
SHA512
0cc1a8eb144490469cf0c4223b7bb808b637cf0122bb9237cc35604a7858c5228a3d046a1c8451a6471079208feb1c787b53328bbecf1a2edb963ff85948eea4
-
SSDEEP
196608:rxKcv8S8DdQmRm8Qnf2ODjMnGydS8wOPp:NFlAdQdF3MnG38wOPp
Behavioral task
behavioral1
Sample
SigmaHacks.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
SigmaHacks.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
SigmaHacks.exe
-
Size
6.1MB
-
MD5
5d5b027a205f7914b26f9eef7bbce415
-
SHA1
0bbdd505b9491659e97ac683eaf21454e2ed3e11
-
SHA256
507796e4d1229ac142af72abed8e5355f61f4c633a2d6dc73203b3674925e8ee
-
SHA512
0cc1a8eb144490469cf0c4223b7bb808b637cf0122bb9237cc35604a7858c5228a3d046a1c8451a6471079208feb1c787b53328bbecf1a2edb963ff85948eea4
-
SSDEEP
196608:rxKcv8S8DdQmRm8Qnf2ODjMnGydS8wOPp:NFlAdQdF3MnG38wOPp
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-