General
-
Target
b4adb5a5c4d12719a397d5c2df3dfd344ca02627c2ccf16f2f207f0dfc09dd58N
-
Size
208KB
-
Sample
241004-ahbs3sxgmf
-
MD5
2a1a7ff58ed0fb57f9b68c91901a7150
-
SHA1
c154025318f72a5d1f54f1633f627e55419f9f35
-
SHA256
b4adb5a5c4d12719a397d5c2df3dfd344ca02627c2ccf16f2f207f0dfc09dd58
-
SHA512
0e93b2ff5bbed5648c6153dd980a60701be6be7786a79f61cca5d8b03e0afb2adf98141c606dc19784ef5226ecb29363bd2ef2fc80a5f8ed89ffef6f8a94f772
-
SSDEEP
6144:d6WI6x1UYmwyukOslxQYcOgNgAAgczkRtz7/hQEjE:dPuBgNgAAgczkRtH/hQn
Malware Config
Targets
-
-
Target
b4adb5a5c4d12719a397d5c2df3dfd344ca02627c2ccf16f2f207f0dfc09dd58N
-
Size
208KB
-
MD5
2a1a7ff58ed0fb57f9b68c91901a7150
-
SHA1
c154025318f72a5d1f54f1633f627e55419f9f35
-
SHA256
b4adb5a5c4d12719a397d5c2df3dfd344ca02627c2ccf16f2f207f0dfc09dd58
-
SHA512
0e93b2ff5bbed5648c6153dd980a60701be6be7786a79f61cca5d8b03e0afb2adf98141c606dc19784ef5226ecb29363bd2ef2fc80a5f8ed89ffef6f8a94f772
-
SSDEEP
6144:d6WI6x1UYmwyukOslxQYcOgNgAAgczkRtz7/hQEjE:dPuBgNgAAgczkRtH/hQn
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops file in System32 directory
-