General

  • Target

    Wallpaperskibidi.exe

  • Size

    65.1MB

  • Sample

    241010-yfw81atbjb

  • MD5

    5b30ac849b50ffe82ed799ce2a3401c2

  • SHA1

    c2ca01eb618f22eac73d28d9919c3a5d52dd41a9

  • SHA256

    6ae94bfc81dfe7bd664592c67ff224eec1c6e0a9bd47ba23a766260e86bf1095

  • SHA512

    97f70be971a70dd85999024b856c33b028959a8e1928e92a8a48306ee019e5f146abc040a7c954e7e9cf7c9f1d5635476bf16ee6ed64d36e5cd1bfba0b696e92

  • SSDEEP

    393216:QkDkpjhB2dhR9JbPrtgNkyIOOR+cb19ZRIIYl6xX9ZzqtCQshHD26a14aBYWlx9y:QPpObRjhOOAcbfWbkQshHSYajxMt

Malware Config

Targets

    • Target

      Wallpaperskibidi.exe

    • Size

      65.1MB

    • MD5

      5b30ac849b50ffe82ed799ce2a3401c2

    • SHA1

      c2ca01eb618f22eac73d28d9919c3a5d52dd41a9

    • SHA256

      6ae94bfc81dfe7bd664592c67ff224eec1c6e0a9bd47ba23a766260e86bf1095

    • SHA512

      97f70be971a70dd85999024b856c33b028959a8e1928e92a8a48306ee019e5f146abc040a7c954e7e9cf7c9f1d5635476bf16ee6ed64d36e5cd1bfba0b696e92

    • SSDEEP

      393216:QkDkpjhB2dhR9JbPrtgNkyIOOR+cb19ZRIIYl6xX9ZzqtCQshHD26a14aBYWlx9y:QPpObRjhOOAcbfWbkQshHSYajxMt

    • Possible privilege escalation attempt

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Modifies file permissions

    • Sets desktop wallpaper using registry

MITRE ATT&CK Enterprise v15

Tasks