General
-
Target
407640d8df3b475239ca21733cfe450ce50ca3be2f60b71201e4f1b03a3b47fbN
-
Size
232KB
-
Sample
240920-jcqvgsverc
-
MD5
e5e8582082d3937b273cabea84b47b20
-
SHA1
16a5a4625db5ddff1ce94d0d5f698be7044cd55c
-
SHA256
407640d8df3b475239ca21733cfe450ce50ca3be2f60b71201e4f1b03a3b47fb
-
SHA512
6301c8b2c2952869b115dcc64760c0dea325c673cc3bf084402ad06615cdbfaf259b88e91ebc8ad9c7085d7fccf88056fe74c3fe1bf6462b96527e4d611e8416
-
SSDEEP
6144:wW3PFKs78g2KyEOaWEqxF6snji81RUinKdNO2:ZPh+mF3
Malware Config
Targets
-
-
Target
407640d8df3b475239ca21733cfe450ce50ca3be2f60b71201e4f1b03a3b47fbN
-
Size
232KB
-
MD5
e5e8582082d3937b273cabea84b47b20
-
SHA1
16a5a4625db5ddff1ce94d0d5f698be7044cd55c
-
SHA256
407640d8df3b475239ca21733cfe450ce50ca3be2f60b71201e4f1b03a3b47fb
-
SHA512
6301c8b2c2952869b115dcc64760c0dea325c673cc3bf084402ad06615cdbfaf259b88e91ebc8ad9c7085d7fccf88056fe74c3fe1bf6462b96527e4d611e8416
-
SSDEEP
6144:wW3PFKs78g2KyEOaWEqxF6snji81RUinKdNO2:ZPh+mF3
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2