General
-
Target
8c901cea5e13f5979e1e7a48ed4c9e40N.exe
-
Size
157KB
-
Sample
240805-pkk7vswbjp
-
MD5
8c901cea5e13f5979e1e7a48ed4c9e40
-
SHA1
a23cceed07d5ee6c2f1240a5408f4818fb67140f
-
SHA256
b2bdf4d2f9743c5a1bf6d8d76b6b6187eda08c8197bab1897b3886983bc4da2e
-
SHA512
f68e9626df45244be1c70debf21f4b7b3bedc73a04e34ded151cbd756c038ff61b1b44989c143b64087081eae25193bdd62a92d0c63ad9f1f7d34bc79dfb9c5c
-
SSDEEP
3072:yp56zRJ83+OJ7NoGvdwWy6k04yW/KXQWA:yOzRWu27dlOd5O0
Behavioral task
behavioral1
Sample
8c901cea5e13f5979e1e7a48ed4c9e40N.exe
Resource
win7-20240708-en
Malware Config
Extracted
urelas
218.54.47.76
218.54.47.77
218.54.47.74
Targets
-
-
Target
8c901cea5e13f5979e1e7a48ed4c9e40N.exe
-
Size
157KB
-
MD5
8c901cea5e13f5979e1e7a48ed4c9e40
-
SHA1
a23cceed07d5ee6c2f1240a5408f4818fb67140f
-
SHA256
b2bdf4d2f9743c5a1bf6d8d76b6b6187eda08c8197bab1897b3886983bc4da2e
-
SHA512
f68e9626df45244be1c70debf21f4b7b3bedc73a04e34ded151cbd756c038ff61b1b44989c143b64087081eae25193bdd62a92d0c63ad9f1f7d34bc79dfb9c5c
-
SSDEEP
3072:yp56zRJ83+OJ7NoGvdwWy6k04yW/KXQWA:yOzRWu27dlOd5O0
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-