General
-
Target
6a292072dd9bb1cd7d363711f7eb1b0d61355af32554357a47b0870c56e66615N
-
Size
312KB
-
Sample
240921-dc3w6asajq
-
MD5
8578705c790e74660139a48490816360
-
SHA1
119832f530b5a21cd6346d288948748c11f4727e
-
SHA256
6a292072dd9bb1cd7d363711f7eb1b0d61355af32554357a47b0870c56e66615
-
SHA512
fa1a69d561cf1723eeb0782cd898df9ed26c370489566ff0b3bad8535a29294c3b0d4b7678c1acb3a39880231cea19b4e040e11e8c57839d37e77dcc2eb284da
-
SSDEEP
6144:Xcax3LbxJYw4xusUws+0sQm/WuPxnyXX7:vLbxJIAsBs+0qR
Malware Config
Targets
-
-
Target
6a292072dd9bb1cd7d363711f7eb1b0d61355af32554357a47b0870c56e66615N
-
Size
312KB
-
MD5
8578705c790e74660139a48490816360
-
SHA1
119832f530b5a21cd6346d288948748c11f4727e
-
SHA256
6a292072dd9bb1cd7d363711f7eb1b0d61355af32554357a47b0870c56e66615
-
SHA512
fa1a69d561cf1723eeb0782cd898df9ed26c370489566ff0b3bad8535a29294c3b0d4b7678c1acb3a39880231cea19b4e040e11e8c57839d37e77dcc2eb284da
-
SSDEEP
6144:Xcax3LbxJYw4xusUws+0sQm/WuPxnyXX7:vLbxJIAsBs+0qR
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2