General
-
Target
23fc07d573b494c930d14baa1bfb4ad9d8f0912c774f8769ba43954bc899d508N
-
Size
312KB
-
Sample
240920-q13brayhpg
-
MD5
ca61800fffe2e5c22de300eb548df890
-
SHA1
f97d98fdf8a2bf9ce6260913330e3f7c795a9bc8
-
SHA256
23fc07d573b494c930d14baa1bfb4ad9d8f0912c774f8769ba43954bc899d508
-
SHA512
2ecc15ec587b1ddee180d14c8e8e289906dcde044891bfcc10ff39d8edbb602b5c1664854f05e2c73b6fd3ac7cff6bc17895dff527ee9b48ee7cb9b996a3c181
-
SSDEEP
6144:PY7+GvTlIpr1f+XqO5aOmSGFDbeOjLPmUwFb:O+eTlIB1f+55SpNPmUwFb
Malware Config
Targets
-
-
Target
23fc07d573b494c930d14baa1bfb4ad9d8f0912c774f8769ba43954bc899d508N
-
Size
312KB
-
MD5
ca61800fffe2e5c22de300eb548df890
-
SHA1
f97d98fdf8a2bf9ce6260913330e3f7c795a9bc8
-
SHA256
23fc07d573b494c930d14baa1bfb4ad9d8f0912c774f8769ba43954bc899d508
-
SHA512
2ecc15ec587b1ddee180d14c8e8e289906dcde044891bfcc10ff39d8edbb602b5c1664854f05e2c73b6fd3ac7cff6bc17895dff527ee9b48ee7cb9b996a3c181
-
SSDEEP
6144:PY7+GvTlIpr1f+XqO5aOmSGFDbeOjLPmUwFb:O+eTlIB1f+55SpNPmUwFb
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2