General
-
Target
73ff216e82cdea049ba1798965de8189abaa87ec0ab8673873ba4f129d3012a2
-
Size
50KB
-
Sample
240903-3fmrsazeql
-
MD5
e265aaa5b61b922c4e71cf6ffb6958c0
-
SHA1
608bf3bb397c10630a5ab565c1024204328d6176
-
SHA256
73ff216e82cdea049ba1798965de8189abaa87ec0ab8673873ba4f129d3012a2
-
SHA512
7170fed97a3e062b705a4f7ee4342f0e92536b93be323bd74a15e3e12747950c6ccb3f8e69ab648c98f42b973d14fa53bd3f9d3dd17eecbef0acb0b5a5e99e49
-
SSDEEP
1536:Or1YuutRPEBW1F0c+BCOyxlfSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:2YnHPE81Ft+C/y
Malware Config
Targets
-
-
Target
73ff216e82cdea049ba1798965de8189abaa87ec0ab8673873ba4f129d3012a2
-
Size
50KB
-
MD5
e265aaa5b61b922c4e71cf6ffb6958c0
-
SHA1
608bf3bb397c10630a5ab565c1024204328d6176
-
SHA256
73ff216e82cdea049ba1798965de8189abaa87ec0ab8673873ba4f129d3012a2
-
SHA512
7170fed97a3e062b705a4f7ee4342f0e92536b93be323bd74a15e3e12747950c6ccb3f8e69ab648c98f42b973d14fa53bd3f9d3dd17eecbef0acb0b5a5e99e49
-
SSDEEP
1536:Or1YuutRPEBW1F0c+BCOyxlfSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:2YnHPE81Ft+C/y
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2