General
-
Target
836ab70974363b42bac1efc3107febc7cb063cbd0b473521284f1f1354462abf
-
Size
475KB
-
Sample
241009-2rkwwszgpf
-
MD5
5bda45a12aad3128265a307785d68642
-
SHA1
28cd0d60564726f6a932b563c59510587a31e04f
-
SHA256
836ab70974363b42bac1efc3107febc7cb063cbd0b473521284f1f1354462abf
-
SHA512
ea60fbbd169469abcd75ba84b4779cbb1843fc1f7f0af8d0760ec3d5463a1ac888429f87a4507fba5e7422164338cdd6687f40f471c0f081cc1c3b05205d3514
-
SSDEEP
12288:93CtSokfFGUMKwlTIU/b37dJ75WEe+eKTxB6mZX:9x9GzHlTv/b35tecFB6g
Behavioral task
behavioral1
Sample
836ab70974363b42bac1efc3107febc7cb063cbd0b473521284f1f1354462abf.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
121.88.5.183
121.88.5.184
Targets
-
-
Target
836ab70974363b42bac1efc3107febc7cb063cbd0b473521284f1f1354462abf
-
Size
475KB
-
MD5
5bda45a12aad3128265a307785d68642
-
SHA1
28cd0d60564726f6a932b563c59510587a31e04f
-
SHA256
836ab70974363b42bac1efc3107febc7cb063cbd0b473521284f1f1354462abf
-
SHA512
ea60fbbd169469abcd75ba84b4779cbb1843fc1f7f0af8d0760ec3d5463a1ac888429f87a4507fba5e7422164338cdd6687f40f471c0f081cc1c3b05205d3514
-
SSDEEP
12288:93CtSokfFGUMKwlTIU/b37dJ75WEe+eKTxB6mZX:9x9GzHlTv/b35tecFB6g
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-