General
-
Target
14c96e7b058b68951b9288b46f135f05420f889f1ce60ad14acd0806cc08dae6N
-
Size
326KB
-
Sample
241010-3ey4essdlh
-
MD5
d108ea09fbe7d6756f8e9030df070b50
-
SHA1
937cb29300741782368a724de5c3d8d4ad81d0a1
-
SHA256
14c96e7b058b68951b9288b46f135f05420f889f1ce60ad14acd0806cc08dae6
-
SHA512
3598aae6de43257f68064a402a780b9a447965e01b2302815d17a26b53c78cfd12716078d65230970d346b86fafa34ae7f91f84c5bad6578fecd926d7aaf4f69
-
SSDEEP
6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYMOZ:vHW138/iXWlK885rKlGSekcj66ciW
Static task
static1
Behavioral task
behavioral1
Sample
14c96e7b058b68951b9288b46f135f05420f889f1ce60ad14acd0806cc08dae6N.exe
Resource
win7-20240903-en
Malware Config
Extracted
urelas
218.54.31.226
218.54.31.165
218.54.31.166
Targets
-
-
Target
14c96e7b058b68951b9288b46f135f05420f889f1ce60ad14acd0806cc08dae6N
-
Size
326KB
-
MD5
d108ea09fbe7d6756f8e9030df070b50
-
SHA1
937cb29300741782368a724de5c3d8d4ad81d0a1
-
SHA256
14c96e7b058b68951b9288b46f135f05420f889f1ce60ad14acd0806cc08dae6
-
SHA512
3598aae6de43257f68064a402a780b9a447965e01b2302815d17a26b53c78cfd12716078d65230970d346b86fafa34ae7f91f84c5bad6578fecd926d7aaf4f69
-
SSDEEP
6144:nvHWrZ+i8/iYiVst4UKVRw8pDrKlGSeNWcx1RsF9gc+XYMOZ:vHW138/iXWlK885rKlGSekcj66ciW
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-