General
-
Target
f6a73ad88d2ce609d9b1561c5e66a401f25168487ce1e1da4987aa4e3f04ea2eN
-
Size
156KB
-
Sample
240920-w5wmna1clg
-
MD5
6282ccffdb43bcc28a421be6be295c50
-
SHA1
9b67778bbd3779eefd0ba75e959f0ee464b279f0
-
SHA256
f6a73ad88d2ce609d9b1561c5e66a401f25168487ce1e1da4987aa4e3f04ea2e
-
SHA512
0ab8cb36bf0e9506a712931906c451c9be82ddbee89f6eca2fa8627abbc172dc9f2764133ef3239769c0f260e3fe484a3abbff15873084c7aad1ce0a2943d134
-
SSDEEP
1536:rjrFn2LQRsNLCNMSG5+SUdqeHAQWXZaNwRRczNoU1LbLkOVNo:3r12UaZLBRWhlL9o
Malware Config
Targets
-
-
Target
f6a73ad88d2ce609d9b1561c5e66a401f25168487ce1e1da4987aa4e3f04ea2eN
-
Size
156KB
-
MD5
6282ccffdb43bcc28a421be6be295c50
-
SHA1
9b67778bbd3779eefd0ba75e959f0ee464b279f0
-
SHA256
f6a73ad88d2ce609d9b1561c5e66a401f25168487ce1e1da4987aa4e3f04ea2e
-
SHA512
0ab8cb36bf0e9506a712931906c451c9be82ddbee89f6eca2fa8627abbc172dc9f2764133ef3239769c0f260e3fe484a3abbff15873084c7aad1ce0a2943d134
-
SSDEEP
1536:rjrFn2LQRsNLCNMSG5+SUdqeHAQWXZaNwRRczNoU1LbLkOVNo:3r12UaZLBRWhlL9o
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2