General
-
Target
7277e8b88bd7b5ba14e7243579329180880e4834127ef515d0439de434c62155
-
Size
234KB
-
Sample
240627-2xgreswfnh
-
MD5
ca1222f744791190c86d0ade1bc9c222
-
SHA1
7e27bedc21a3dabab82741840799f3fc78f35b4f
-
SHA256
7277e8b88bd7b5ba14e7243579329180880e4834127ef515d0439de434c62155
-
SHA512
278a6ae5defe92d59cf9725ec639d38d0320eb879824e9276e79e524de8b4888b60de16706aa946163a424f09b10840391a49bfccd0ae2c32a354c079d82de3f
-
SSDEEP
3072:RFi6z/VXzAf3ocOva7fvYnS4OVzX+xm9roxE8cqU/A:RxFSqy7qAzOxm9YcqP
Malware Config
Targets
-
-
Target
7277e8b88bd7b5ba14e7243579329180880e4834127ef515d0439de434c62155
-
Size
234KB
-
MD5
ca1222f744791190c86d0ade1bc9c222
-
SHA1
7e27bedc21a3dabab82741840799f3fc78f35b4f
-
SHA256
7277e8b88bd7b5ba14e7243579329180880e4834127ef515d0439de434c62155
-
SHA512
278a6ae5defe92d59cf9725ec639d38d0320eb879824e9276e79e524de8b4888b60de16706aa946163a424f09b10840391a49bfccd0ae2c32a354c079d82de3f
-
SSDEEP
3072:RFi6z/VXzAf3ocOva7fvYnS4OVzX+xm9roxE8cqU/A:RxFSqy7qAzOxm9YcqP
Score8/10-
Downloads MZ/PE file
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-