General
-
Target
aac535268db31e29ae6174e11b7ea9d74d6d8ca18ff2b36b9008e5319f936f58.exe
-
Size
24.0MB
-
Sample
240726-fskfvsxhql
-
MD5
3fed6ec8a34d6687c6566f5523078c30
-
SHA1
3234f764de5e7649b8d502347e6b049519c55960
-
SHA256
aac535268db31e29ae6174e11b7ea9d74d6d8ca18ff2b36b9008e5319f936f58
-
SHA512
9d245c3476772f3eae018e47767ec6df831c1abf42a8b1cf67aeedab4b726eccd3504d95a1d2829310de499720a26d1879dba062d602a09109f3ddf4e0aaade7
-
SSDEEP
393216:5cd9eXeBAnt7Eqwl+OPflPXbIicfKSef/ucsdcB16yKD1hA/SAOv94JcrvFbHRU2:KLmnt75OHlDQKSefRsdcuyKzAOv94Jgj
Malware Config
Targets
-
-
Target
aac535268db31e29ae6174e11b7ea9d74d6d8ca18ff2b36b9008e5319f936f58.exe
-
Size
24.0MB
-
MD5
3fed6ec8a34d6687c6566f5523078c30
-
SHA1
3234f764de5e7649b8d502347e6b049519c55960
-
SHA256
aac535268db31e29ae6174e11b7ea9d74d6d8ca18ff2b36b9008e5319f936f58
-
SHA512
9d245c3476772f3eae018e47767ec6df831c1abf42a8b1cf67aeedab4b726eccd3504d95a1d2829310de499720a26d1879dba062d602a09109f3ddf4e0aaade7
-
SSDEEP
393216:5cd9eXeBAnt7Eqwl+OPflPXbIicfKSef/ucsdcB16yKD1hA/SAOv94JcrvFbHRU2:KLmnt75OHlDQKSefRsdcuyKzAOv94Jgj
Score8/10-
Suspicious Office macro
Office document equipped with macros.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-