General
-
Target
e9d95c7263b742a7fe6fc68e0af295584ea4e4c6ae5fec43ff5a3af8c6354923N
-
Size
84KB
-
Sample
240920-x8xvkatfqr
-
MD5
d6e308a860438f031fd83cc27b179540
-
SHA1
0a2a4cb12269cc3aeea2b523cd269f22d9cd11ee
-
SHA256
e9d95c7263b742a7fe6fc68e0af295584ea4e4c6ae5fec43ff5a3af8c6354923
-
SHA512
5602a7c4565f40333ba01c6babc186c865fb3e515b615657ab55cb5b34d9d4fa963c308b119adf6b4c4374759669a2230e3dc8e92ba6eb75b5c1f4bfbd7205ed
-
SSDEEP
768:pKINYQmuec4OdJNUC1x2avPPpykILkGuIBLP3nxD7TONoap55VSFJ0T72mZCcLX:pFYBZOdUCJwVuYipwFJ0T72mocT
Malware Config
Targets
-
-
Target
e9d95c7263b742a7fe6fc68e0af295584ea4e4c6ae5fec43ff5a3af8c6354923N
-
Size
84KB
-
MD5
d6e308a860438f031fd83cc27b179540
-
SHA1
0a2a4cb12269cc3aeea2b523cd269f22d9cd11ee
-
SHA256
e9d95c7263b742a7fe6fc68e0af295584ea4e4c6ae5fec43ff5a3af8c6354923
-
SHA512
5602a7c4565f40333ba01c6babc186c865fb3e515b615657ab55cb5b34d9d4fa963c308b119adf6b4c4374759669a2230e3dc8e92ba6eb75b5c1f4bfbd7205ed
-
SSDEEP
768:pKINYQmuec4OdJNUC1x2avPPpykILkGuIBLP3nxD7TONoap55VSFJ0T72mZCcLX:pFYBZOdUCJwVuYipwFJ0T72mocT
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2