General
-
Target
929f775f2fc187385758ca74613c2340N.exe
-
Size
179KB
-
Sample
240805-qb1fvs1akc
-
MD5
929f775f2fc187385758ca74613c2340
-
SHA1
37cfc1032389f42672ffe4dad730e96b5afa8ce8
-
SHA256
d910cca45030e1c5fc540eea2ef8d6b9d2cf7acc7cba7b9f741830c3d77b3c90
-
SHA512
2fe44b283bb1c30944196952954778292f43570dbbd9785e94a930a2b004bfaa7823fc6b8052f52ad5da7a941fde82f8f8c3214a614f748b2f5ce97e9a8dca66
-
SSDEEP
3072:pXTTASJKf2n5AxE2NpxOa2XdU2QF4s5XgIDFyHb8kHofL/09rGB:pvASJKenie2xT2NU2OTFQb8Fb0IB
Malware Config
Targets
-
-
Target
929f775f2fc187385758ca74613c2340N.exe
-
Size
179KB
-
MD5
929f775f2fc187385758ca74613c2340
-
SHA1
37cfc1032389f42672ffe4dad730e96b5afa8ce8
-
SHA256
d910cca45030e1c5fc540eea2ef8d6b9d2cf7acc7cba7b9f741830c3d77b3c90
-
SHA512
2fe44b283bb1c30944196952954778292f43570dbbd9785e94a930a2b004bfaa7823fc6b8052f52ad5da7a941fde82f8f8c3214a614f748b2f5ce97e9a8dca66
-
SSDEEP
3072:pXTTASJKf2n5AxE2NpxOa2XdU2QF4s5XgIDFyHb8kHofL/09rGB:pvASJKenie2xT2NU2OTFQb8Fb0IB
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-
Checks for any installed AV software in registry
-
Suspicious use of SetThreadContext
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1