General
-
Target
b252d8ef46cebbb1030ba8b81cd07f3e0ff90c1aba38fb9bd253ad1593f2ecb4N
-
Size
168KB
-
Sample
241002-bx3e1szhql
-
MD5
dcb18f314893de4f77cf4edf2b667720
-
SHA1
c62196e9067f8e06060707351f259f49f8105b0d
-
SHA256
b252d8ef46cebbb1030ba8b81cd07f3e0ff90c1aba38fb9bd253ad1593f2ecb4
-
SHA512
a4965f744efda288a0ed8636efcec6d0898ff556cd4fb23565eb42ca2fccdd82bbfcf44dfdb878548e4a0efa86de3c2f6506bb3ee42a0d03723bfe22a5f92464
-
SSDEEP
1536:He05LcmJPqPA7zTGRVu+1niPRC7gIeTo8dzQhihZOy+AMnmE7UkAUJZvhICqDoj4:rmiPqPGzTGRVuI7bkzrhT+nmEASq
Malware Config
Targets
-
-
Target
b252d8ef46cebbb1030ba8b81cd07f3e0ff90c1aba38fb9bd253ad1593f2ecb4N
-
Size
168KB
-
MD5
dcb18f314893de4f77cf4edf2b667720
-
SHA1
c62196e9067f8e06060707351f259f49f8105b0d
-
SHA256
b252d8ef46cebbb1030ba8b81cd07f3e0ff90c1aba38fb9bd253ad1593f2ecb4
-
SHA512
a4965f744efda288a0ed8636efcec6d0898ff556cd4fb23565eb42ca2fccdd82bbfcf44dfdb878548e4a0efa86de3c2f6506bb3ee42a0d03723bfe22a5f92464
-
SSDEEP
1536:He05LcmJPqPA7zTGRVu+1niPRC7gIeTo8dzQhihZOy+AMnmE7UkAUJZvhICqDoj4:rmiPqPGzTGRVuI7bkzrhT+nmEASq
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2