General
-
Target
5858b14d370a55bb9d07c2a4fda34670.bin
-
Size
56KB
-
Sample
240728-cbjw8a1fmj
-
MD5
5858b14d370a55bb9d07c2a4fda34670
-
SHA1
64fb83e84d3b8f413724ca8d1e03426a22c4dedb
-
SHA256
27e34e4460dd4094d0acd7e72efd86564de98bc7072647a39e5a78422b1698b0
-
SHA512
5d0bfa0a91c48e3678ad96871cf27320924cdb0746537ab539a30e8296c0becb489a076a3b3a475c6f308111a9ac88564b22e0176477c2fc91c1c854239e3de1
-
SSDEEP
1536:bTmAYXax6Sei+Hv508ek/NVSUzYbG2qeSu+zdVB:x+P5wUebG2qeSu0VB
Malware Config
Targets
-
-
Target
5858b14d370a55bb9d07c2a4fda34670.bin
-
Size
56KB
-
MD5
5858b14d370a55bb9d07c2a4fda34670
-
SHA1
64fb83e84d3b8f413724ca8d1e03426a22c4dedb
-
SHA256
27e34e4460dd4094d0acd7e72efd86564de98bc7072647a39e5a78422b1698b0
-
SHA512
5d0bfa0a91c48e3678ad96871cf27320924cdb0746537ab539a30e8296c0becb489a076a3b3a475c6f308111a9ac88564b22e0176477c2fc91c1c854239e3de1
-
SSDEEP
1536:bTmAYXax6Sei+Hv508ek/NVSUzYbG2qeSu+zdVB:x+P5wUebG2qeSu0VB
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2