General
-
Target
d71006bcb0e93f5454c5b97ac447c2f0N
-
Size
124KB
-
Sample
240914-c7s5rssgmr
-
MD5
d71006bcb0e93f5454c5b97ac447c2f0
-
SHA1
4593467af4efa7f4eb4b947fe280bcf1c217b728
-
SHA256
bb9073d720a119348075b3a0e2da4c2bb9ac511940a9831429c6eb3fa8e29d07
-
SHA512
c58cf7a56d54344fe31468e2d1369ee24ddb4bcc01fb017005890f5d42bcf73c2406a529a61cd20a1e190745478ba5192a9c6a62fcdfe8893411901c30b8a3aa
-
SSDEEP
1536:gVtkjHTQwU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VewNeG0h/l:ikj0wU0GgAT98t
Malware Config
Targets
-
-
Target
d71006bcb0e93f5454c5b97ac447c2f0N
-
Size
124KB
-
MD5
d71006bcb0e93f5454c5b97ac447c2f0
-
SHA1
4593467af4efa7f4eb4b947fe280bcf1c217b728
-
SHA256
bb9073d720a119348075b3a0e2da4c2bb9ac511940a9831429c6eb3fa8e29d07
-
SHA512
c58cf7a56d54344fe31468e2d1369ee24ddb4bcc01fb017005890f5d42bcf73c2406a529a61cd20a1e190745478ba5192a9c6a62fcdfe8893411901c30b8a3aa
-
SSDEEP
1536:gVtkjHTQwU0GgAJa0P1kNmKldCMhdu8KWP/nTn8nBP9VewNeG0h/l:ikj0wU0GgAT98t
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2