General
-
Target
4f3a7172cec87f27a29a41568c02b0ce2cbb3f3c204960c406928dba9ddb5704N
-
Size
50KB
-
Sample
241010-t5an3svgrb
-
MD5
1937eafdcffc66a2d8ba15e08143ba80
-
SHA1
2260d6f806158993ba63fd0c27b3ca768f788c64
-
SHA256
4f3a7172cec87f27a29a41568c02b0ce2cbb3f3c204960c406928dba9ddb5704
-
SHA512
38f7bbe86dbc6258754068e425c127b516cbf0ca568274162645fbd7021091e0fad6e8c566996e8d0381afa96b0dc824779dc5eb69b96cd3f7f7c023d909a2ab
-
SSDEEP
1536:cFJ5U3TT5F9c+kZrWSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:65Yv5F6TZSy
Malware Config
Targets
-
-
Target
4f3a7172cec87f27a29a41568c02b0ce2cbb3f3c204960c406928dba9ddb5704N
-
Size
50KB
-
MD5
1937eafdcffc66a2d8ba15e08143ba80
-
SHA1
2260d6f806158993ba63fd0c27b3ca768f788c64
-
SHA256
4f3a7172cec87f27a29a41568c02b0ce2cbb3f3c204960c406928dba9ddb5704
-
SHA512
38f7bbe86dbc6258754068e425c127b516cbf0ca568274162645fbd7021091e0fad6e8c566996e8d0381afa96b0dc824779dc5eb69b96cd3f7f7c023d909a2ab
-
SSDEEP
1536:cFJ5U3TT5F9c+kZrWSIFsJAIFXacwjpPcJ3lu3kNS62kfFQy:65Yv5F6TZSy
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2