General
-
Target
09118c13111dbacb4e9c43dba709b6f0N
-
Size
132KB
-
Sample
240912-s8b6msscpf
-
MD5
09118c13111dbacb4e9c43dba709b6f0
-
SHA1
f9e52661649514c64faed3e5b43fe96c740f8be2
-
SHA256
a2cca95031c1589cac67d27563ac4f82be185785b28e3da31870cf8944f18cc9
-
SHA512
1e64d22e9d310351c50b08eaded0fc3555986c3090fca5b456fc0349b0fa2a53e9333571baa0d4fee3a43ac9e283a186c6879a0220505f0608fb7f70b28a5426
-
SSDEEP
1536:cSm4w/TbqH6rM2qEbBkIvI4DyQDIws/HmmYbRdfuLfwo7JaS4:Bw/TWH63qEbBkn4e2s/HmlTfKwQq
Malware Config
Targets
-
-
Target
09118c13111dbacb4e9c43dba709b6f0N
-
Size
132KB
-
MD5
09118c13111dbacb4e9c43dba709b6f0
-
SHA1
f9e52661649514c64faed3e5b43fe96c740f8be2
-
SHA256
a2cca95031c1589cac67d27563ac4f82be185785b28e3da31870cf8944f18cc9
-
SHA512
1e64d22e9d310351c50b08eaded0fc3555986c3090fca5b456fc0349b0fa2a53e9333571baa0d4fee3a43ac9e283a186c6879a0220505f0608fb7f70b28a5426
-
SSDEEP
1536:cSm4w/TbqH6rM2qEbBkIvI4DyQDIws/HmmYbRdfuLfwo7JaS4:Bw/TWH63qEbBkn4e2s/HmlTfKwQq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2