General
-
Target
36b4d731a321219f5fdbaf50a33c3828e57752f90150879a08f68da7b6f815e0
-
Size
40KB
-
Sample
241011-y9wjkaxapj
-
MD5
39c32541690fb3ccdb46428f24046bba
-
SHA1
7925a5063fc59165ed9c8ff8bd3d5147aa0fce84
-
SHA256
36b4d731a321219f5fdbaf50a33c3828e57752f90150879a08f68da7b6f815e0
-
SHA512
f7b241acab89edf61b714b20cc8548987bc0c28ecf7f26392a2fbb6f379ec22b000adfd2b6f89fb0cb8c8d23f0f18c26ffd92ecf0b76ba1cae46db85e2b6b61e
-
SSDEEP
768:Yrfko/X6mjiTSxWTpp8F9bdHXtHs7CQpcdHoCCvc:Y48jiO4j8F95NWee1vc
Malware Config
Targets
-
-
Target
36b4d731a321219f5fdbaf50a33c3828e57752f90150879a08f68da7b6f815e0
-
Size
40KB
-
MD5
39c32541690fb3ccdb46428f24046bba
-
SHA1
7925a5063fc59165ed9c8ff8bd3d5147aa0fce84
-
SHA256
36b4d731a321219f5fdbaf50a33c3828e57752f90150879a08f68da7b6f815e0
-
SHA512
f7b241acab89edf61b714b20cc8548987bc0c28ecf7f26392a2fbb6f379ec22b000adfd2b6f89fb0cb8c8d23f0f18c26ffd92ecf0b76ba1cae46db85e2b6b61e
-
SSDEEP
768:Yrfko/X6mjiTSxWTpp8F9bdHXtHs7CQpcdHoCCvc:Y48jiO4j8F95NWee1vc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2