General
-
Target
c2d934f7aaba7be36aca90a943912410N.exe
-
Size
60KB
-
Sample
240826-ey6qlswepk
-
MD5
c2d934f7aaba7be36aca90a943912410
-
SHA1
a62796e1260970085150b349729a717604ed56fc
-
SHA256
d00fa7b74d4e2cfbb48d4b9b8f3ecd9d41c605fb38bbb857de3893502048dc43
-
SHA512
ee92fab82b2ea02ad8fb6ba9700b2095f11084bf672d2d347efeb769eb0aa4bfec4aff3b12176352430d85188c26e2f9354b9ff2383dd002fd5dc4f212e399a9
-
SSDEEP
768:aRA3FixSmPhmUOgUuEMB8SCQu0NMRb9qHeFtFSvoPuQ+uqqOV29N:v3IQy5euj8SC90NMO2tFSwPuQ+u42
Malware Config
Targets
-
-
Target
c2d934f7aaba7be36aca90a943912410N.exe
-
Size
60KB
-
MD5
c2d934f7aaba7be36aca90a943912410
-
SHA1
a62796e1260970085150b349729a717604ed56fc
-
SHA256
d00fa7b74d4e2cfbb48d4b9b8f3ecd9d41c605fb38bbb857de3893502048dc43
-
SHA512
ee92fab82b2ea02ad8fb6ba9700b2095f11084bf672d2d347efeb769eb0aa4bfec4aff3b12176352430d85188c26e2f9354b9ff2383dd002fd5dc4f212e399a9
-
SSDEEP
768:aRA3FixSmPhmUOgUuEMB8SCQu0NMRb9qHeFtFSvoPuQ+uqqOV29N:v3IQy5euj8SC90NMO2tFSwPuQ+u42
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2