General
-
Target
d9273115cf455e83a75d84f70fb6e06bcc1bb7bd7e32891de32d1884513e69fbN
-
Size
156KB
-
Sample
240920-16nqna1fjj
-
MD5
8a3c0b95c383e63f7f4cc76cedc33c60
-
SHA1
e5e191da2b69b36203cb0684d8d12982c02a4826
-
SHA256
d9273115cf455e83a75d84f70fb6e06bcc1bb7bd7e32891de32d1884513e69fb
-
SHA512
e347ed266a4bb92e3fab879bea917de65f3c9aa0d3f3b72c087d211cd66cf7c29d2af3637cd602a1b394f92f53dc3a4ef87f0cab85c47d5be9653d540e7107db
-
SSDEEP
3072:cNMtUS4aZhJdxKPE+vgu36MN9vqKyHjm6I1JDVOc2W4oQZiEa+vM:Am7d0zvhqMN9vgjm6ILDVOAWcH
Malware Config
Targets
-
-
Target
d9273115cf455e83a75d84f70fb6e06bcc1bb7bd7e32891de32d1884513e69fbN
-
Size
156KB
-
MD5
8a3c0b95c383e63f7f4cc76cedc33c60
-
SHA1
e5e191da2b69b36203cb0684d8d12982c02a4826
-
SHA256
d9273115cf455e83a75d84f70fb6e06bcc1bb7bd7e32891de32d1884513e69fb
-
SHA512
e347ed266a4bb92e3fab879bea917de65f3c9aa0d3f3b72c087d211cd66cf7c29d2af3637cd602a1b394f92f53dc3a4ef87f0cab85c47d5be9653d540e7107db
-
SSDEEP
3072:cNMtUS4aZhJdxKPE+vgu36MN9vqKyHjm6I1JDVOc2W4oQZiEa+vM:Am7d0zvhqMN9vgjm6ILDVOAWcH
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2