General
-
Target
8b3408dcc91ae969e00b8180dbfd8790N.exe
-
Size
66KB
-
Sample
240905-plre9s1fre
-
MD5
8b3408dcc91ae969e00b8180dbfd8790
-
SHA1
8215572cd6b225a09cbbee4dfed6c7794c46f02a
-
SHA256
a8e8030ed85a5bca1f9f163e5456f15a732fe411dd87fd567a7af393af61b6d4
-
SHA512
9614bdf6b02566b5bb65552cba1b666f502fa6be4f3a4ca79bf1d67facc2d2535698992cc0360653689d8e4784944851f4ed49725462978fe13361d39cb03e34
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6t:Zr3Z5IfQIR81ad5yX6t
Malware Config
Targets
-
-
Target
8b3408dcc91ae969e00b8180dbfd8790N.exe
-
Size
66KB
-
MD5
8b3408dcc91ae969e00b8180dbfd8790
-
SHA1
8215572cd6b225a09cbbee4dfed6c7794c46f02a
-
SHA256
a8e8030ed85a5bca1f9f163e5456f15a732fe411dd87fd567a7af393af61b6d4
-
SHA512
9614bdf6b02566b5bb65552cba1b666f502fa6be4f3a4ca79bf1d67facc2d2535698992cc0360653689d8e4784944851f4ed49725462978fe13361d39cb03e34
-
SSDEEP
768:ZrItKyw5WHXfQIhIiIk9ecAaVPD96KyX6t:Zr3Z5IfQIR81ad5yX6t
Score8/10-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-