General
-
Target
bc3e5f392e460a69e7c116f9578e9230N.exe
-
Size
50KB
-
Sample
240822-xw68gatapd
-
MD5
bc3e5f392e460a69e7c116f9578e9230
-
SHA1
c916c7bde6d6cc8d790478ea585b12dc94693a5e
-
SHA256
6e2c3c3a160a9763e6415653302fe3b7c5d7b7984d3ffbdaf961457a694584c6
-
SHA512
2d3c523c3119d9f26a3a5ba934bdbc82628fb41e0dc20bfe010bf9c7cbf7ad4a633966236dc754de22bdb02423f13b8325b79a450c41f66a3b36771e1c9b6dec
-
SSDEEP
1536:onGPLT11CfUQv+xhWylmBaqFsJC5F5BzXUnwzjx/u1bmtlokMfGXf:FPLBYU+qhwFD
Malware Config
Targets
-
-
Target
bc3e5f392e460a69e7c116f9578e9230N.exe
-
Size
50KB
-
MD5
bc3e5f392e460a69e7c116f9578e9230
-
SHA1
c916c7bde6d6cc8d790478ea585b12dc94693a5e
-
SHA256
6e2c3c3a160a9763e6415653302fe3b7c5d7b7984d3ffbdaf961457a694584c6
-
SHA512
2d3c523c3119d9f26a3a5ba934bdbc82628fb41e0dc20bfe010bf9c7cbf7ad4a633966236dc754de22bdb02423f13b8325b79a450c41f66a3b36771e1c9b6dec
-
SSDEEP
1536:onGPLT11CfUQv+xhWylmBaqFsJC5F5BzXUnwzjx/u1bmtlokMfGXf:FPLBYU+qhwFD
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2