General
-
Target
9d198fff8cdd9d7ebc94fc567bf81525.zip
-
Size
69KB
-
Sample
240901-ns9dzszbpr
-
MD5
fd76ab7a49dd6697e642198a58ae846c
-
SHA1
83d928941e61c947e10233e23a6621088b2f905b
-
SHA256
023f5a0088b82e0258f1326467225fc4f8b3de600ba657b28b0cb103a76df046
-
SHA512
3e37d73bd502f8aac367fe0fb9f61518397dffcd1d962109ca8306e3c63890a33e3f80d5057f31eb9752e3448fa44cd27600a22306b89d6ad743f6952a0aca69
-
SSDEEP
1536:3bQ2deVUgyYtOwHeipPqNg/VuDjWYrGDQuVrT1Twhq1fv6LLLxTnPIQ//MsxrI:3b1deygyYZkO/VgGDpVVWXLLLxR/EB
Malware Config
Targets
-
-
Target
c2aea531bf26ee361b3b14e7a22f91a4ff85d4fd93eca4dca85f692c123a7d50
-
Size
212KB
-
MD5
9d198fff8cdd9d7ebc94fc567bf81525
-
SHA1
0d6d88d4bce9e616a33c49b6f2424c37b388ada4
-
SHA256
c2aea531bf26ee361b3b14e7a22f91a4ff85d4fd93eca4dca85f692c123a7d50
-
SHA512
aa4f903543c3fbbe25f88083ff5b707d7ffb628f5d90048368877cc6688b4b674be1835bea8559da30939a26bd024033002bb929a36d794785046728f6925916
-
SSDEEP
1536:tMVVLz2cGCsTLAx4cd9Lv2PElgWnRaLNoN274B/K51ptaHElfTczp6Far2/AgAIk:wLyB/Up+yRaLNoN2N04A1on2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2