General

  • Target

    d705057413dc54e9b1866a194f00a1ce63871d99a4ff76ff7f4035eacf2ff733

  • Size

    1.1MB

  • Sample

    240614-e8vfbsyhlq

  • MD5

    b7ae326bc9e0fbe2d39e8845aa5f7641

  • SHA1

    53413c854f0165159fcf77fe733e4887a811da00

  • SHA256

    d705057413dc54e9b1866a194f00a1ce63871d99a4ff76ff7f4035eacf2ff733

  • SHA512

    758d0bf83e658c7a7360d53c53ba0d45ff4f1892c6ff8005b639591d2d4455387fd336db1cedd4b4d9af74433c7a9fcb4e2ed6e60bfbd5e81424dc96a1437b64

  • SSDEEP

    6144:gDCwfazrDCwfqDCwfyDDCwfADCwfyDDCwfqDCwfyDDCwfazm:g7azr7q7yD7A7yD7q7yD7azm

Score
10/10

Malware Config

Targets

    • Target

      d705057413dc54e9b1866a194f00a1ce63871d99a4ff76ff7f4035eacf2ff733

    • Size

      1.1MB

    • MD5

      b7ae326bc9e0fbe2d39e8845aa5f7641

    • SHA1

      53413c854f0165159fcf77fe733e4887a811da00

    • SHA256

      d705057413dc54e9b1866a194f00a1ce63871d99a4ff76ff7f4035eacf2ff733

    • SHA512

      758d0bf83e658c7a7360d53c53ba0d45ff4f1892c6ff8005b639591d2d4455387fd336db1cedd4b4d9af74433c7a9fcb4e2ed6e60bfbd5e81424dc96a1437b64

    • SSDEEP

      6144:gDCwfazrDCwfqDCwfyDDCwfADCwfyDDCwfqDCwfyDDCwfazm:g7azr7q7yD7A7yD7q7yD7azm

    Score
    10/10
    • Modifies visibility of file extensions in Explorer

    • Modifies visiblity of hidden/system files in Explorer

    • Adds policy Run key to start application

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks