General
-
Target
10c585f3ba26c90bdf1b5313a606af70N.exe
-
Size
709KB
-
Sample
240720-1rgc2ayfqm
-
MD5
10c585f3ba26c90bdf1b5313a606af70
-
SHA1
d700fb52a2f920d6745c0155b350b8806c55e7da
-
SHA256
fee2d7d46ed5bd45a2f6f746fbe7a3e058d678af7d9236684999be3c1d618ed7
-
SHA512
a3da8637f0cced5460f2b73e9d3f8bc0978234344480f720e54ababcdaf58ab041a9b0077bc7780fee9d420bbeabe82b544c22c05497ed6e23bcbff63eede035
-
SSDEEP
12288:uRJb7vg+t9FP4mRtj9ie0cJ5FVRAPHGA9apwS77XEsf2sBvCH:uRpLVFPbthieraHDowhs+sBg
Malware Config
Targets
-
-
Target
10c585f3ba26c90bdf1b5313a606af70N.exe
-
Size
709KB
-
MD5
10c585f3ba26c90bdf1b5313a606af70
-
SHA1
d700fb52a2f920d6745c0155b350b8806c55e7da
-
SHA256
fee2d7d46ed5bd45a2f6f746fbe7a3e058d678af7d9236684999be3c1d618ed7
-
SHA512
a3da8637f0cced5460f2b73e9d3f8bc0978234344480f720e54ababcdaf58ab041a9b0077bc7780fee9d420bbeabe82b544c22c05497ed6e23bcbff63eede035
-
SSDEEP
12288:uRJb7vg+t9FP4mRtj9ie0cJ5FVRAPHGA9apwS77XEsf2sBvCH:uRpLVFPbthieraHDowhs+sBg
Score8/10-
Suspicious Office macro
Office document equipped with macros.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-