General
-
Target
2548b0fb65b0517033f492be4ea30c7af378db51b5288bceb12657119a68b041N
-
Size
64KB
-
Sample
241013-ztqttayarb
-
MD5
4c91d7bfbf9c1d184f1ecde8ae236e40
-
SHA1
5989a8e869d0c131cdbf74752897339da104e8aa
-
SHA256
2548b0fb65b0517033f492be4ea30c7af378db51b5288bceb12657119a68b041
-
SHA512
dc7a7bf33a03140cea3e36627c2ad3919fc8e38f7604949eea40e957e299148220dad2ddf45d576748bc023183a2319b0e4fa1cc3f30d43db5c5a28eef0df539
-
SSDEEP
768:OrItKyw5WHXfQmjIiIk9ecAa6cMb964yXhDLdU:Or3Z5IfQmv81awvyX5ZU
Malware Config
Targets
-
-
Target
2548b0fb65b0517033f492be4ea30c7af378db51b5288bceb12657119a68b041N
-
Size
64KB
-
MD5
4c91d7bfbf9c1d184f1ecde8ae236e40
-
SHA1
5989a8e869d0c131cdbf74752897339da104e8aa
-
SHA256
2548b0fb65b0517033f492be4ea30c7af378db51b5288bceb12657119a68b041
-
SHA512
dc7a7bf33a03140cea3e36627c2ad3919fc8e38f7604949eea40e957e299148220dad2ddf45d576748bc023183a2319b0e4fa1cc3f30d43db5c5a28eef0df539
-
SSDEEP
768:OrItKyw5WHXfQmjIiIk9ecAa6cMb964yXhDLdU:Or3Z5IfQmv81awvyX5ZU
Score8/10-
Sets file to hidden
Modifies file attributes to stop it showing in Explorer etc.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Executes dropped EXE
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-