General
-
Target
7fdd72e034b68b568eac212e204d11f512a269b71f71f00541e892bc74dc2a6d
-
Size
262KB
-
Sample
240701-sdrmvaxerc
-
MD5
42a245e8bb57446a068fd66f16a7f286
-
SHA1
78d478fe50a09297597bc30e4dde4a28e776bd5c
-
SHA256
7fdd72e034b68b568eac212e204d11f512a269b71f71f00541e892bc74dc2a6d
-
SHA512
a82f6764051cc56d0633756163272f1d786f25fa63b1694a8fd6bd2732d2d026878bbba188d31dc6399b2c3160ee8558c9f64ff734cda78d9ab884766083224c
-
SSDEEP
6144:x9h49X2wNu+9qYfe1tC12H4Pd0TrFADT:x9W9XsTivsW
Static task
static1
Behavioral task
behavioral1
Sample
7fdd72e034b68b568eac212e204d11f512a269b71f71f00541e892bc74dc2a6d.exe
Resource
win7-20240508-en
Malware Config
Extracted
gcleaner
185.172.128.90
185.172.128.69
-
url_path
/advdlc.php
Targets
-
-
Target
7fdd72e034b68b568eac212e204d11f512a269b71f71f00541e892bc74dc2a6d
-
Size
262KB
-
MD5
42a245e8bb57446a068fd66f16a7f286
-
SHA1
78d478fe50a09297597bc30e4dde4a28e776bd5c
-
SHA256
7fdd72e034b68b568eac212e204d11f512a269b71f71f00541e892bc74dc2a6d
-
SHA512
a82f6764051cc56d0633756163272f1d786f25fa63b1694a8fd6bd2732d2d026878bbba188d31dc6399b2c3160ee8558c9f64ff734cda78d9ab884766083224c
-
SSDEEP
6144:x9h49X2wNu+9qYfe1tC12H4Pd0TrFADT:x9W9XsTivsW
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-