General
-
Target
1fc91b4ed4483a76906d1e645bf8edffe3b79ed0cd9b1bdcca074a45ade80065N
-
Size
84KB
-
Sample
240919-gcjeastbne
-
MD5
60e167f76f4720395a74883b4e84c2e0
-
SHA1
65d78d96060a7b7479d6927be12fc03b127bed92
-
SHA256
1fc91b4ed4483a76906d1e645bf8edffe3b79ed0cd9b1bdcca074a45ade80065
-
SHA512
67458a936570ae384b2019a2258b3e52076ef3aa06e824650099317a0976f2325941ab13041dfd86c5593e16f19c5258734e341920fc539e03a57cef5b706b61
-
SSDEEP
768:DyV+hOvoUkwzNXgfFP/8IWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7Al8:DoFvp5Knv76Ezh/vYlJwAitTB3l8
Malware Config
Targets
-
-
Target
1fc91b4ed4483a76906d1e645bf8edffe3b79ed0cd9b1bdcca074a45ade80065N
-
Size
84KB
-
MD5
60e167f76f4720395a74883b4e84c2e0
-
SHA1
65d78d96060a7b7479d6927be12fc03b127bed92
-
SHA256
1fc91b4ed4483a76906d1e645bf8edffe3b79ed0cd9b1bdcca074a45ade80065
-
SHA512
67458a936570ae384b2019a2258b3e52076ef3aa06e824650099317a0976f2325941ab13041dfd86c5593e16f19c5258734e341920fc539e03a57cef5b706b61
-
SSDEEP
768:DyV+hOvoUkwzNXgfFP/8IWi3KEyUhL7b7Yqlf4JwQltjmtTBHi7Al8:DoFvp5Knv76Ezh/vYlJwAitTB3l8
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2