General
-
Target
23932cb1eb52033ed7e14b86036cfde46899a6aedd28dc85671b090c6002bc1dN
-
Size
240KB
-
Sample
240921-djgbqssbma
-
MD5
f72802b2cfeabd2a31da7b9834f1b680
-
SHA1
1ad22f76f3998470db5df4560b52c4f4433fc5f9
-
SHA256
23932cb1eb52033ed7e14b86036cfde46899a6aedd28dc85671b090c6002bc1d
-
SHA512
5f061114d2fdcfdc1f2e28ed4f5c7d42df50662f98f13b960ef699927e4af3d5a6d0152dddd8dfd2e0d1304352a27c9d80d47cc08565fddbbba85be679408da4
-
SSDEEP
3072:kGRUcRW+zbfMjS2BXeWBFcAfqTEBRjefrfRLfN561PHuh0daYW6:kexFD2peScAfA0jCfr567J
Malware Config
Targets
-
-
Target
23932cb1eb52033ed7e14b86036cfde46899a6aedd28dc85671b090c6002bc1dN
-
Size
240KB
-
MD5
f72802b2cfeabd2a31da7b9834f1b680
-
SHA1
1ad22f76f3998470db5df4560b52c4f4433fc5f9
-
SHA256
23932cb1eb52033ed7e14b86036cfde46899a6aedd28dc85671b090c6002bc1d
-
SHA512
5f061114d2fdcfdc1f2e28ed4f5c7d42df50662f98f13b960ef699927e4af3d5a6d0152dddd8dfd2e0d1304352a27c9d80d47cc08565fddbbba85be679408da4
-
SSDEEP
3072:kGRUcRW+zbfMjS2BXeWBFcAfqTEBRjefrfRLfN561PHuh0daYW6:kexFD2peScAfA0jCfr567J
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2