General
-
Target
0f1c329b6d6a4bbcfdf9af38b7b02343e1c89c7dad4e00f34a78e6f524d65083N
-
Size
244KB
-
Sample
240920-1zj4ws1cjq
-
MD5
0250932f1c0c335c166ecbe2150d2d70
-
SHA1
9809dea2690123bcd386aaa8a79697282413ca71
-
SHA256
0f1c329b6d6a4bbcfdf9af38b7b02343e1c89c7dad4e00f34a78e6f524d65083
-
SHA512
98af696e5f023f7458a1c38eee26019ab062a52d5cec03b1f75684ef71b1a96f2213e24b23050ebb8c45ee3588d22d8b381b90ec84b7b47e5bc07d7343612212
-
SSDEEP
768:zZ8buvNS3960BVJ14enGamr4YV7RiLklI9MMkkFXUG8sWEMg5blICkNnT2NoOLri:zOu+MORabaja3ataQ5qOBHyi9Zx0klo
Malware Config
Targets
-
-
Target
0f1c329b6d6a4bbcfdf9af38b7b02343e1c89c7dad4e00f34a78e6f524d65083N
-
Size
244KB
-
MD5
0250932f1c0c335c166ecbe2150d2d70
-
SHA1
9809dea2690123bcd386aaa8a79697282413ca71
-
SHA256
0f1c329b6d6a4bbcfdf9af38b7b02343e1c89c7dad4e00f34a78e6f524d65083
-
SHA512
98af696e5f023f7458a1c38eee26019ab062a52d5cec03b1f75684ef71b1a96f2213e24b23050ebb8c45ee3588d22d8b381b90ec84b7b47e5bc07d7343612212
-
SSDEEP
768:zZ8buvNS3960BVJ14enGamr4YV7RiLklI9MMkkFXUG8sWEMg5blICkNnT2NoOLri:zOu+MORabaja3ataQ5qOBHyi9Zx0klo
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2