General

  • Target

    a8de9046c6edbbd4cdb95b71a8220706.exe

  • Size

    308KB

  • Sample

    240107-x39beacddk

  • MD5

    a8de9046c6edbbd4cdb95b71a8220706

  • SHA1

    685f5a200a92399d20d50dd6cfb45ac88f65dec8

  • SHA256

    7bf3f392a4518dd0a482d824cf607c6be01a3d8adaafe48bf3dab594563b5fc3

  • SHA512

    43b17212f14df685f63882f0bbdeacb3ccda9324aab64be283f3878ca67e41f23ec5c9417bfd549dbfeda8bb065f14b93543bcf234bbc18aff92e75a528df254

  • SSDEEP

    3072:AknJfYJfOPq7fbcDNeiFk7I7cOOOkKtZaAsoaAsAaAsMaAs1aAs5aAslaAsqOaAz:AknJfYJfOPq7fbcDNeiFk7I7cOOOkKq

Score
10/10

Malware Config

Targets

    • Target

      a8de9046c6edbbd4cdb95b71a8220706.exe

    • Size

      308KB

    • MD5

      a8de9046c6edbbd4cdb95b71a8220706

    • SHA1

      685f5a200a92399d20d50dd6cfb45ac88f65dec8

    • SHA256

      7bf3f392a4518dd0a482d824cf607c6be01a3d8adaafe48bf3dab594563b5fc3

    • SHA512

      43b17212f14df685f63882f0bbdeacb3ccda9324aab64be283f3878ca67e41f23ec5c9417bfd549dbfeda8bb065f14b93543bcf234bbc18aff92e75a528df254

    • SSDEEP

      3072:AknJfYJfOPq7fbcDNeiFk7I7cOOOkKtZaAsoaAsAaAsMaAs1aAs5aAslaAsqOaAz:AknJfYJfOPq7fbcDNeiFk7I7cOOOkKq

    Score
    10/10
    • Modifies visiblity of hidden/system files in Explorer

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks