General
-
Target
micstream-setup-x64.exe
-
Size
1.1MB
-
Sample
240925-qv4bvs1eqd
-
MD5
a4f86bee27071fba654ca442d52c6a5a
-
SHA1
90f947ecafb26683842765a446e184a84869d36f
-
SHA256
16c665c37bbaf5563de58cb57b97b75bdd5b319db112633728ba41744fa48932
-
SHA512
70d3113d5783b014fdbb66c132c1d7305c616104d7850d8635c1d94f30fd3c8ccb1b6a66e08701713ae6f478a13c83b75f433bbc6cc8add2021e2244a0b85669
-
SSDEEP
24576:Hdppd60FSCOxtwYXIopInNPQTnxx6dIV81tPK:HdppPFSCEt/IopiY5V8zi
Malware Config
Targets
-
-
Target
micstream-setup-x64.exe
-
Size
1.1MB
-
MD5
a4f86bee27071fba654ca442d52c6a5a
-
SHA1
90f947ecafb26683842765a446e184a84869d36f
-
SHA256
16c665c37bbaf5563de58cb57b97b75bdd5b319db112633728ba41744fa48932
-
SHA512
70d3113d5783b014fdbb66c132c1d7305c616104d7850d8635c1d94f30fd3c8ccb1b6a66e08701713ae6f478a13c83b75f433bbc6cc8add2021e2244a0b85669
-
SSDEEP
24576:Hdppd60FSCOxtwYXIopInNPQTnxx6dIV81tPK:HdppPFSCEt/IopiY5V8zi
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-