General
-
Target
881d94a39eb84025b9b61d5589ae2309928b669adb18b30cb33cffc92cbec3d9
-
Size
88KB
-
Sample
241005-3nxxqa1clc
-
MD5
1345cb14e9967638dbd13c268070e228
-
SHA1
4bf5c42d7ecd36a749ecf54f58fcabd7ae15cb1b
-
SHA256
881d94a39eb84025b9b61d5589ae2309928b669adb18b30cb33cffc92cbec3d9
-
SHA512
30150d554d4a2d9dfd6ccc9ec5eeb63fa170121451b7304ac995389bd323432465a95d10dcb5607c71280d4c29bd66d1a2eee5ab7b636cf08ad18d8664cf37f3
-
SSDEEP
768:m5r94K9pNL3m2q59FIkud+39WiLswDUMyiFIk6chirzOejHznNZ1RmVNPYn69FFY:K9pcScSRZ1AuYVM+/sa1uFf
Malware Config
Targets
-
-
Target
881d94a39eb84025b9b61d5589ae2309928b669adb18b30cb33cffc92cbec3d9
-
Size
88KB
-
MD5
1345cb14e9967638dbd13c268070e228
-
SHA1
4bf5c42d7ecd36a749ecf54f58fcabd7ae15cb1b
-
SHA256
881d94a39eb84025b9b61d5589ae2309928b669adb18b30cb33cffc92cbec3d9
-
SHA512
30150d554d4a2d9dfd6ccc9ec5eeb63fa170121451b7304ac995389bd323432465a95d10dcb5607c71280d4c29bd66d1a2eee5ab7b636cf08ad18d8664cf37f3
-
SSDEEP
768:m5r94K9pNL3m2q59FIkud+39WiLswDUMyiFIk6chirzOejHznNZ1RmVNPYn69FFY:K9pcScSRZ1AuYVM+/sa1uFf
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2