General
-
Target
47efd16bca63d8202b934257296df22d4d59db72c5f7ca1f26bfad7f70c480d8N
-
Size
196KB
-
Sample
240921-qcvl1atfkq
-
MD5
51dffdf2435391edd719bbb4a9310140
-
SHA1
2e24caae55720c8d7d22ce44fa2e3a7945e222b7
-
SHA256
47efd16bca63d8202b934257296df22d4d59db72c5f7ca1f26bfad7f70c480d8
-
SHA512
bced3b37c1c33614442f1a1a79cd5c228f4d9076057692e6b8099fe98c1b20c3e9feaccc49c6ab165fe730af3f4453151534486d0bfdad50714fd2ed35c947b6
-
SSDEEP
3072:ZyKt30tQ9nLHbB9WJvA7DejJuKvEhfmE9:n4QxL7B9WSvejJuBV
Malware Config
Targets
-
-
Target
47efd16bca63d8202b934257296df22d4d59db72c5f7ca1f26bfad7f70c480d8N
-
Size
196KB
-
MD5
51dffdf2435391edd719bbb4a9310140
-
SHA1
2e24caae55720c8d7d22ce44fa2e3a7945e222b7
-
SHA256
47efd16bca63d8202b934257296df22d4d59db72c5f7ca1f26bfad7f70c480d8
-
SHA512
bced3b37c1c33614442f1a1a79cd5c228f4d9076057692e6b8099fe98c1b20c3e9feaccc49c6ab165fe730af3f4453151534486d0bfdad50714fd2ed35c947b6
-
SSDEEP
3072:ZyKt30tQ9nLHbB9WJvA7DejJuKvEhfmE9:n4QxL7B9WSvejJuBV
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2