General
-
Target
925154a179482b17f2a87d8197c5e744a159d5849b001bfcb1b40094a583cb52N
-
Size
76KB
-
Sample
240920-hydavathmc
-
MD5
87c8145c1afea9a777b96ff899c6b2a0
-
SHA1
67aa68af7dacd1769c85b2674148f05986f9272f
-
SHA256
925154a179482b17f2a87d8197c5e744a159d5849b001bfcb1b40094a583cb52
-
SHA512
c1e979fbb95e3fad770c0052cbb0c37201603c99ced3aa775ed78623f516d27aab91a6ab46905217962b8e77c8232652934a5b2823cfce806806e4b4f66d1399
-
SSDEEP
768:HAIrCyVL4e20nesaw+xOF4/i/BEYkp7P6lweQDhDmpU5GFrrEzWsdSE0d8pUHIkD:HdgeLesExO+2G40OIkaJa
Malware Config
Targets
-
-
Target
925154a179482b17f2a87d8197c5e744a159d5849b001bfcb1b40094a583cb52N
-
Size
76KB
-
MD5
87c8145c1afea9a777b96ff899c6b2a0
-
SHA1
67aa68af7dacd1769c85b2674148f05986f9272f
-
SHA256
925154a179482b17f2a87d8197c5e744a159d5849b001bfcb1b40094a583cb52
-
SHA512
c1e979fbb95e3fad770c0052cbb0c37201603c99ced3aa775ed78623f516d27aab91a6ab46905217962b8e77c8232652934a5b2823cfce806806e4b4f66d1399
-
SSDEEP
768:HAIrCyVL4e20nesaw+xOF4/i/BEYkp7P6lweQDhDmpU5GFrrEzWsdSE0d8pUHIkD:HdgeLesExO+2G40OIkaJa
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2