General
-
Target
33468b7dd28b199078d67fb911cd6b0226f3182635081fd6710e938ff1645517
-
Size
52KB
-
Sample
240909-y3e81axhlk
-
MD5
4fbed9e8030f1e0ad112e4795f0153b7
-
SHA1
19b75172490ce2cd444fee0dfb956b8395e5aca8
-
SHA256
33468b7dd28b199078d67fb911cd6b0226f3182635081fd6710e938ff1645517
-
SHA512
b7cc652d10fb181d465a852a971fd4edc34fd0e817d4cb55e066f2367d9270973417f6ee7c8c8f894a636cb3e8e46bcdfd4f56a80352db2465955d6ea6d666fe
-
SSDEEP
768:2fj3dfMZTe19DVWl8zHPHXyXHCzcHHvzQBdi9vcIVSEFFoHa0ZKT:2fOTIVWl4vUv4WvcsFFoHxIT
Malware Config
Targets
-
-
Target
33468b7dd28b199078d67fb911cd6b0226f3182635081fd6710e938ff1645517
-
Size
52KB
-
MD5
4fbed9e8030f1e0ad112e4795f0153b7
-
SHA1
19b75172490ce2cd444fee0dfb956b8395e5aca8
-
SHA256
33468b7dd28b199078d67fb911cd6b0226f3182635081fd6710e938ff1645517
-
SHA512
b7cc652d10fb181d465a852a971fd4edc34fd0e817d4cb55e066f2367d9270973417f6ee7c8c8f894a636cb3e8e46bcdfd4f56a80352db2465955d6ea6d666fe
-
SSDEEP
768:2fj3dfMZTe19DVWl8zHPHXyXHCzcHHvzQBdi9vcIVSEFFoHa0ZKT:2fOTIVWl4vUv4WvcsFFoHxIT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2