General
-
Target
ac30c625b90bf000c804a2d8a891d27d57f07eb4b6e8e105bb6bb3702c5f3b48N
-
Size
48KB
-
Sample
240920-x5376stdre
-
MD5
14a28772328c703a5e46868d231445b0
-
SHA1
2fa4fb7f9bc090f0bbede9771442ab91d3c89761
-
SHA256
ac30c625b90bf000c804a2d8a891d27d57f07eb4b6e8e105bb6bb3702c5f3b48
-
SHA512
25b4af33881c7fc848fd211f3ee67af4217b92f9d522380c09c70c353eacdbd939c379f8ae9aab434eec6ce40364f1594c2ae9115de117435c7f33e52d85c255
-
SSDEEP
768:qOmN0XbIMlLQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MK:qOmMl8HTwKqWAxcpvcqu74+J
Malware Config
Targets
-
-
Target
ac30c625b90bf000c804a2d8a891d27d57f07eb4b6e8e105bb6bb3702c5f3b48N
-
Size
48KB
-
MD5
14a28772328c703a5e46868d231445b0
-
SHA1
2fa4fb7f9bc090f0bbede9771442ab91d3c89761
-
SHA256
ac30c625b90bf000c804a2d8a891d27d57f07eb4b6e8e105bb6bb3702c5f3b48
-
SHA512
25b4af33881c7fc848fd211f3ee67af4217b92f9d522380c09c70c353eacdbd939c379f8ae9aab434eec6ce40364f1594c2ae9115de117435c7f33e52d85c255
-
SSDEEP
768:qOmN0XbIMlLQeGTwK0NHXsH6bJCYhx8HV0kvcUwSuUCw3+MK:qOmMl8HTwKqWAxcpvcqu74+J
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2