General
-
Target
91db972028d282d5fe52e15656b7a7b0N.exe
-
Size
111KB
-
Sample
240902-b5ad7syajr
-
MD5
91db972028d282d5fe52e15656b7a7b0
-
SHA1
4b2af930241efa2d181c1ffb411848b33dc6ed5e
-
SHA256
af7c7678f3257a6fea2ab46e57a9fc032d31e5d698cd544ee972bd0161a06ebb
-
SHA512
fd39cac209c97a9d6dffcd7fbac34c9815ba4cb091e273e5323b52579aae383c9ac866dab32b48da746b8430445950457af8630443765df2695ce01225d81857
-
SSDEEP
3072:515C1OygzfDyZjjp4D4dMz4n4N4t4R4aEIIIIzS:515CufQxMdEIIIIz
Malware Config
Targets
-
-
Target
91db972028d282d5fe52e15656b7a7b0N.exe
-
Size
111KB
-
MD5
91db972028d282d5fe52e15656b7a7b0
-
SHA1
4b2af930241efa2d181c1ffb411848b33dc6ed5e
-
SHA256
af7c7678f3257a6fea2ab46e57a9fc032d31e5d698cd544ee972bd0161a06ebb
-
SHA512
fd39cac209c97a9d6dffcd7fbac34c9815ba4cb091e273e5323b52579aae383c9ac866dab32b48da746b8430445950457af8630443765df2695ce01225d81857
-
SSDEEP
3072:515C1OygzfDyZjjp4D4dMz4n4N4t4R4aEIIIIzS:515CufQxMdEIIIIz
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2