General
-
Target
a21a06044e30b02528669ccb38a3379f7e383359133caf0194f52d7a20e7a934
-
Size
248KB
-
Sample
240710-c2hf3s1hnq
-
MD5
66986c5b41c8f41f3870a2495ed62664
-
SHA1
e1e70fbc9da480aa5fcccc6f707d7f5e6d1dac41
-
SHA256
a21a06044e30b02528669ccb38a3379f7e383359133caf0194f52d7a20e7a934
-
SHA512
e6db4ed66dc349bca6d5e4e343f8fee3db8beadcf47021cdd34b083455533865e82dc69d529bdccc7b073df52367b3433b771986ff7eb0234790fc7fe2abd521
-
SSDEEP
3072:Q4clvLhDo0BKxWVeBYhInpMFgYykBgfXKRRpGPlOH+cZknPh2U1l:pclNdgEeqPFXTgfQ6PlOH+gKPMw
Malware Config
Targets
-
-
Target
a21a06044e30b02528669ccb38a3379f7e383359133caf0194f52d7a20e7a934
-
Size
248KB
-
MD5
66986c5b41c8f41f3870a2495ed62664
-
SHA1
e1e70fbc9da480aa5fcccc6f707d7f5e6d1dac41
-
SHA256
a21a06044e30b02528669ccb38a3379f7e383359133caf0194f52d7a20e7a934
-
SHA512
e6db4ed66dc349bca6d5e4e343f8fee3db8beadcf47021cdd34b083455533865e82dc69d529bdccc7b073df52367b3433b771986ff7eb0234790fc7fe2abd521
-
SSDEEP
3072:Q4clvLhDo0BKxWVeBYhInpMFgYykBgfXKRRpGPlOH+cZknPh2U1l:pclNdgEeqPFXTgfQ6PlOH+gKPMw
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-