General
-
Target
ab4a7d26059a86b0bdebb2bf552d0180N
-
Size
136KB
-
Sample
240914-pdasjssgqj
-
MD5
ab4a7d26059a86b0bdebb2bf552d0180
-
SHA1
3572aa276ed50c4cbe09e9bf9a9d0137b91537d6
-
SHA256
c32912bb0bf96dc91dc52d7fd6276aad482e04602b3b70924620f5f6df71a593
-
SHA512
d03a791066e8fd470b5190dd4b4eae88154afb11bc632bf2f1f91e7662befbf06afd7b7466f28fa113b5647152254936e1ae974a1f824fbfac58129ce98e9bf2
-
SSDEEP
1536:oPahqRTl+BhRKRmH2GijPEUbaxnvdWkNqSP3PKh9pGw93mW9bcGwh+8hcXZDuS8C:4K6EUbaxv13wpUh2XZDutcHdVmn8+3o7
Malware Config
Targets
-
-
Target
ab4a7d26059a86b0bdebb2bf552d0180N
-
Size
136KB
-
MD5
ab4a7d26059a86b0bdebb2bf552d0180
-
SHA1
3572aa276ed50c4cbe09e9bf9a9d0137b91537d6
-
SHA256
c32912bb0bf96dc91dc52d7fd6276aad482e04602b3b70924620f5f6df71a593
-
SHA512
d03a791066e8fd470b5190dd4b4eae88154afb11bc632bf2f1f91e7662befbf06afd7b7466f28fa113b5647152254936e1ae974a1f824fbfac58129ce98e9bf2
-
SSDEEP
1536:oPahqRTl+BhRKRmH2GijPEUbaxnvdWkNqSP3PKh9pGw93mW9bcGwh+8hcXZDuS8C:4K6EUbaxv13wpUh2XZDutcHdVmn8+3o7
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2