General
-
Target
00c386c2ecf7c41678562d76e2b29c2edd50c2eed731128231b35b73a7055a22N
-
Size
152KB
-
Sample
240921-be3casxfrb
-
MD5
b59143e24407fc77294632511e087df0
-
SHA1
b461f923f65698ed124f3ba5f0e4bc2b6f77b237
-
SHA256
00c386c2ecf7c41678562d76e2b29c2edd50c2eed731128231b35b73a7055a22
-
SHA512
5e7f28dda58fffd48662a24d9a503e4a291c85d549ed92e3f52f75818c6d4a1db212947da5f76499f01bf6bf9ecba606f6eea7f0a757e8f1141a722575290122
-
SSDEEP
3072:znnb6+ZO37RQNN+4+8taCCKh5yoWcFHbL1+ik5s4oQZiEwuVy:X6+07cNx+8FCKDxz1xk5oWB4
Static task
static1
Behavioral task
behavioral1
Sample
00c386c2ecf7c41678562d76e2b29c2edd50c2eed731128231b35b73a7055a22N.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
00c386c2ecf7c41678562d76e2b29c2edd50c2eed731128231b35b73a7055a22N.exe
Resource
win10v2004-20240910-en
Malware Config
Targets
-
-
Target
00c386c2ecf7c41678562d76e2b29c2edd50c2eed731128231b35b73a7055a22N
-
Size
152KB
-
MD5
b59143e24407fc77294632511e087df0
-
SHA1
b461f923f65698ed124f3ba5f0e4bc2b6f77b237
-
SHA256
00c386c2ecf7c41678562d76e2b29c2edd50c2eed731128231b35b73a7055a22
-
SHA512
5e7f28dda58fffd48662a24d9a503e4a291c85d549ed92e3f52f75818c6d4a1db212947da5f76499f01bf6bf9ecba606f6eea7f0a757e8f1141a722575290122
-
SSDEEP
3072:znnb6+ZO37RQNN+4+8taCCKh5yoWcFHbL1+ik5s4oQZiEwuVy:X6+07cNx+8FCKDxz1xk5oWB4
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2