General
-
Target
6ffaf2ef14ec5542a50134a750053dd20a15ee0cf9a763953bb5043e7fad4cef
-
Size
50KB
-
Sample
240825-afnpvsxdkg
-
MD5
6d54290dd17a75295e727a6f180f5bf7
-
SHA1
a1187489f5aa95898efb288649b7e3506a8fd3bc
-
SHA256
6ffaf2ef14ec5542a50134a750053dd20a15ee0cf9a763953bb5043e7fad4cef
-
SHA512
21cdd0e9de490de667bf54bcc3b6c346d163b41c8f58f929c4511508e0c17fd6ed4a5ee4c0eea3a6617aa5dcd81769079ddaa2e814db9aa7a7c5cc4a2c25b681
-
SSDEEP
1536:nr1YuqawyW1F0c+BCOyxlfSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:JYrB31Ft+C/y
Malware Config
Targets
-
-
Target
6ffaf2ef14ec5542a50134a750053dd20a15ee0cf9a763953bb5043e7fad4cef
-
Size
50KB
-
MD5
6d54290dd17a75295e727a6f180f5bf7
-
SHA1
a1187489f5aa95898efb288649b7e3506a8fd3bc
-
SHA256
6ffaf2ef14ec5542a50134a750053dd20a15ee0cf9a763953bb5043e7fad4cef
-
SHA512
21cdd0e9de490de667bf54bcc3b6c346d163b41c8f58f929c4511508e0c17fd6ed4a5ee4c0eea3a6617aa5dcd81769079ddaa2e814db9aa7a7c5cc4a2c25b681
-
SSDEEP
1536:nr1YuqawyW1F0c+BCOyxlfSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:JYrB31Ft+C/y
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2