General
-
Target
3fcc528597e9f233e33284b84f3a5f68c079ac8552c42d39e7985d57ab71b0fd
-
Size
51KB
-
Sample
240901-sscr8svflf
-
MD5
a1c035d61693596c9f18dda46991075b
-
SHA1
125c22ba41ae2f891de8560c1a459be07ab9654c
-
SHA256
3fcc528597e9f233e33284b84f3a5f68c079ac8552c42d39e7985d57ab71b0fd
-
SHA512
6582755a8e7d1ce914251e55a7c02176d51f47d990d2c852f08f99df2e07786531eca331ede6e63eadcd8eefe4b46c580dd35c5204676dc6d676f892e1940388
-
SSDEEP
768:m4wjlwTy5/2QQ6JWFXiiAIma3kPN6ZOmBt2GydOS57oubSVedimMG/iuSXgMYH:kvQP/iiANMcO8t15bQaDxF
Malware Config
Targets
-
-
Target
68cafa4e3d69f22887c3a922266147ba0454eeb4cb4fa91b5fff3f4e05930474
-
Size
264KB
-
MD5
38038cef8b4730aeaca8659e85228aed
-
SHA1
03377bfac8822de9bae3c7d8ed8c9b0fc9fbe4c8
-
SHA256
68cafa4e3d69f22887c3a922266147ba0454eeb4cb4fa91b5fff3f4e05930474
-
SHA512
314b0b0cdc846f76733326c7b8c334a33c9071b30fbe402996198501d3839797aa44e70856e3323f169173c7ba754b06a1bf6d3bf910cdfe3c80d9420648db77
-
SSDEEP
3072:G0znPd9r/9ydS69WV09ThL7SfhEDPT8zhAT7Sgfi:G+7rlu7SgK
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2