General

  • Target

    dd82f8530d5f56e978b8d95b06207ab2fb7510c48e563325519786fdc435581a

  • Size

    6.9MB

  • Sample

    240603-e7rcaach37

  • MD5

    cd59e8b7140161ed1e496bea64ab5bc9

  • SHA1

    4f03b541b20150696d5b4a22ae3911e5283cb585

  • SHA256

    dd82f8530d5f56e978b8d95b06207ab2fb7510c48e563325519786fdc435581a

  • SHA512

    82b2bb5beea8f851b8ee05d365342f68bc04ac41b4a672175d22437932b5907d3687c8973e138f39581e79173617c3d61df354360302b236957cce46bebe6ee5

  • SSDEEP

    196608:gc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc21:0

Score
10/10

Malware Config

Targets

    • Target

      dd82f8530d5f56e978b8d95b06207ab2fb7510c48e563325519786fdc435581a

    • Size

      6.9MB

    • MD5

      cd59e8b7140161ed1e496bea64ab5bc9

    • SHA1

      4f03b541b20150696d5b4a22ae3911e5283cb585

    • SHA256

      dd82f8530d5f56e978b8d95b06207ab2fb7510c48e563325519786fdc435581a

    • SHA512

      82b2bb5beea8f851b8ee05d365342f68bc04ac41b4a672175d22437932b5907d3687c8973e138f39581e79173617c3d61df354360302b236957cce46bebe6ee5

    • SSDEEP

      196608:gc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc2mDMmD2mDe2mDMmD2mDc21:0

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Adds policy Run key to start application

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks