General
-
Target
7689df1a09856a53253239532eb39a1273ed12e6562b2b6a82471be9bd38ee3e
-
Size
1.1MB
-
Sample
240825-ap5dzazbjk
-
MD5
2c2f6075c1fee5e374b7b686ba0cea0d
-
SHA1
cc5af3a348e9e24aa73bdbb7e505268add43bad7
-
SHA256
7689df1a09856a53253239532eb39a1273ed12e6562b2b6a82471be9bd38ee3e
-
SHA512
39669d67a8fc1b469f418cc54ef12800a6a9ab08a851cc16b478be7d5312ee016808c4d134efec2f9e982edd423120012647efe4591fa280189ccf4625a5cdf2
-
SSDEEP
12288:WZTcvRN2NWvoq/ZmyIP66okz/b4Ak+OOyWWjazZTcvRN2NWvoq/ZmyIP66oko:WZgKN5qdOokz0A1bP1ZgKN5qdOoko
Malware Config
Targets
-
-
Target
7689df1a09856a53253239532eb39a1273ed12e6562b2b6a82471be9bd38ee3e
-
Size
1.1MB
-
MD5
2c2f6075c1fee5e374b7b686ba0cea0d
-
SHA1
cc5af3a348e9e24aa73bdbb7e505268add43bad7
-
SHA256
7689df1a09856a53253239532eb39a1273ed12e6562b2b6a82471be9bd38ee3e
-
SHA512
39669d67a8fc1b469f418cc54ef12800a6a9ab08a851cc16b478be7d5312ee016808c4d134efec2f9e982edd423120012647efe4591fa280189ccf4625a5cdf2
-
SSDEEP
12288:WZTcvRN2NWvoq/ZmyIP66okz/b4Ak+OOyWWjazZTcvRN2NWvoq/ZmyIP66oko:WZgKN5qdOokz0A1bP1ZgKN5qdOoko
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-