General
-
Target
SEV Market_Bloom_V3.exe
-
Size
1.9MB
-
Sample
240416-dq6j7sga77
-
MD5
1edee5907a41de0133e65af9b26dee10
-
SHA1
a051f23d3b1bb10ff09ec4ef44a8e11fc49965be
-
SHA256
84dbef98a6918ee42541f1a8a9a446df27adaa8fe801ffe44ce2017e36f1e983
-
SHA512
3ff28d3411425db7027401aa7ba88e866cc1dc6967850f155ae854d63ab9d32589b142fea9ec97b945a358ab103ade83808af54d106e0fb198f389cd1f3e213f
-
SSDEEP
24576:PFOaylYlkxR5JGTQRiZ9DmE5+42uhRXGlBQesCgbbmYFr7dZdKyT/i:tE8cOTl9T5RdhtGly6gPmYtnZi
Malware Config
Targets
-
-
Target
SEV Market_Bloom_V3.exe
-
Size
1.9MB
-
MD5
1edee5907a41de0133e65af9b26dee10
-
SHA1
a051f23d3b1bb10ff09ec4ef44a8e11fc49965be
-
SHA256
84dbef98a6918ee42541f1a8a9a446df27adaa8fe801ffe44ce2017e36f1e983
-
SHA512
3ff28d3411425db7027401aa7ba88e866cc1dc6967850f155ae854d63ab9d32589b142fea9ec97b945a358ab103ade83808af54d106e0fb198f389cd1f3e213f
-
SSDEEP
24576:PFOaylYlkxR5JGTQRiZ9DmE5+42uhRXGlBQesCgbbmYFr7dZdKyT/i:tE8cOTl9T5RdhtGly6gPmYtnZi
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Scheduled Task/Job
1