General
-
Target
ce0ce4022f474488bbbbb47ccdc934550792ad608e3dbee7282257511e8f9869
-
Size
216KB
-
Sample
240903-kvafwssdrn
-
MD5
59c3cb9d6e6a1dbfab2b5a743aaa6ad9
-
SHA1
e1f7deb5776188fa741e4d59f356cdffaa2d0acb
-
SHA256
ce0ce4022f474488bbbbb47ccdc934550792ad608e3dbee7282257511e8f9869
-
SHA512
1543d54d5d896d4231750800d93d75ba093684446d11f8ae5adaeb68a0268cbfdb3fb0e64b9f377ad521ec79cffda416b54f59a0df43ce1a90564c589c9708dd
-
SSDEEP
6144:X2UIfrt3+TetonBi3QxRy4g09ICSnqf9uSUgkxtpsaPjK/bEoK828fwAoEn+M8H:X2Prt3+TetonBi3QxRwfnqf9uSUgkxtZ
Malware Config
Targets
-
-
Target
ce0ce4022f474488bbbbb47ccdc934550792ad608e3dbee7282257511e8f9869
-
Size
216KB
-
MD5
59c3cb9d6e6a1dbfab2b5a743aaa6ad9
-
SHA1
e1f7deb5776188fa741e4d59f356cdffaa2d0acb
-
SHA256
ce0ce4022f474488bbbbb47ccdc934550792ad608e3dbee7282257511e8f9869
-
SHA512
1543d54d5d896d4231750800d93d75ba093684446d11f8ae5adaeb68a0268cbfdb3fb0e64b9f377ad521ec79cffda416b54f59a0df43ce1a90564c589c9708dd
-
SSDEEP
6144:X2UIfrt3+TetonBi3QxRy4g09ICSnqf9uSUgkxtpsaPjK/bEoK828fwAoEn+M8H:X2Prt3+TetonBi3QxRwfnqf9uSUgkxtZ
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2