General
-
Target
74bc9755621aa7926dfd44cb82697700N.exe
-
Size
60KB
-
Sample
240818-k7yn9awgpe
-
MD5
74bc9755621aa7926dfd44cb82697700
-
SHA1
5a119bda6e8baf73c973655311fb870ebc25fe37
-
SHA256
d84e43467cea2012339169fd49133402eb78142d5e22d0ad78085571b39dd9c3
-
SHA512
04f8dbc220c12e65a0eff29175097ff2cabd90496fba231071e3def4566a1f025543f2ba2b40bffa2ea517f55bde9073eed0ca0299fbcd02e5abf88a8327f9ed
-
SSDEEP
768:K9A6CsxSmPhmUOgUuEMB8SCQu0NMRb9qHeFtFSvoPuQ+OWMjX:L6LQy5euj8SC90NMO2tFSwPuQ+O/X
Malware Config
Targets
-
-
Target
74bc9755621aa7926dfd44cb82697700N.exe
-
Size
60KB
-
MD5
74bc9755621aa7926dfd44cb82697700
-
SHA1
5a119bda6e8baf73c973655311fb870ebc25fe37
-
SHA256
d84e43467cea2012339169fd49133402eb78142d5e22d0ad78085571b39dd9c3
-
SHA512
04f8dbc220c12e65a0eff29175097ff2cabd90496fba231071e3def4566a1f025543f2ba2b40bffa2ea517f55bde9073eed0ca0299fbcd02e5abf88a8327f9ed
-
SSDEEP
768:K9A6CsxSmPhmUOgUuEMB8SCQu0NMRb9qHeFtFSvoPuQ+OWMjX:L6LQy5euj8SC90NMO2tFSwPuQ+O/X
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2