General
-
Target
19236422320.zip
-
Size
85.0MB
-
Sample
241003-hd166szbqk
-
MD5
3d374bebb3f86c5d3265d4ae666550fd
-
SHA1
c16db4934e952a35271eae989ed38653afbf5aa5
-
SHA256
3e778ae1f69f9cb5d8c57bf8d2fdcdc27ea5379236678edebc10ee13e620edbe
-
SHA512
b65b43b110fa316ae8121c84a5caf7851101a86f1361f0a524649e8fb2e67cbcaa95eac4e2a49083a1c8400eccb8014c2ad27469c3afd1dd31402b76b5f9bed7
-
SSDEEP
1572864:VmvTN1yLturXfgvGRQxtmImHsgRJoMz60QmRGduArBjMwJ6UW65KkVp5rfSc1:VQpOkPgOCLm/zr+nrrBFVLZVz
Malware Config
Targets
-
-
Target
5d52e742c22935761d0ee611a2e587f8ead7cac73a294963d2b66d24acba9f22
-
Size
86.8MB
-
MD5
d4e26e342aa77b0f77b10052b1076c2b
-
SHA1
5178385a4f5d46580a76ac83ff55c71dd8d54f66
-
SHA256
5d52e742c22935761d0ee611a2e587f8ead7cac73a294963d2b66d24acba9f22
-
SHA512
07e3662e23b0594b3d2dc13c9d59677bb1b5cb1411096fdef4c558adfb358164bcb57c84e2e1af783d48ebfdabd6587639db72372175db99094588c62b618534
-
SSDEEP
1572864:0t8YR1zwX+B2wVpIPBq26VPzSxrKZ/+O+C57Vc4J+A+w7SB9qAs:t2BwYVeBq2SPzSxrKs9c7XJ+wuBcAs
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
2Subvert Trust Controls
1Install Root Certificate
1